Open
Cached
·
just now
25
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Weak
require-trusted-types-for
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Significantly strengthen CSP directives
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
Performance Headers
4 headers
Accept-Ranges
Performance
none
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Sec-CH-Viewport-Width, Sec-CH-DPR,Accept-Encoding
Caching Headers
3 headers
Cache-Control
Caching
no-cache, no-store, max-age=0, must-revalidate
Expires
Caching
Mon, 01 Jan 1990 00:00:00 GMT
Pragma
Caching
no-cache
Content Headers
1 headers
Content-Type
Content
text/html; charset=utf-8
Server Headers
1 headers
Server
Server
ESF
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
VISITOR_PRIVACY_METADATA=CgJVUxIEGgAgMw%3D%3D; Domain=.youtube.com; Expires=Tue, 26-May-2026 04:06:24 GMT; Path=/; Secure; HttpOnly; SameSite=none
Other Headers
8 headers
Accept-Ch
Other
Sec-CH-Viewport-Width, Sec-CH-DPR
Alt-Svc
Other
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Date
Other
Thu, 27 Nov 2025 04:06:24 GMT
Document-Policy
Other
include-js-call-stacks-in-crash-reports
Origin-Trial
Other
AiDEBptUfVeO93q48VdVMe/ubupazdAl8AaHP+NBzdnW8quUcHdzJUyGSfrmtpKJu7EOvwRp9ug2rEo3XU+WMAMAAAB2eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJEZXZpY2VCb3VuZFNlc3Npb25DcmVkZW50aWFsczIiLCJleHBpcnkiOjE3NzQzMTA0MDAsImlzU3ViZG9tYWluIjp0cnVlfQ==
P3p
Other
CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
Report-To
Other
{"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
Reporting-Endpoints
Other
default="/web-reports?context=eJwNz39o1HUcx3G-e5rOu9t97_t9v2k1xWRuSNSt3XISyYS0rvyxNShFd8p-6F2M9qOtu2ujKRiKBlZItpy_f5SLzdYoCGzNTaTFCpY5l2KTwQpiJU6D1myX8_PHA168eMGbt-fOQzWztVbOS3VW944Ga8vSRuuFn9609ofj1tTZuPV5T9wqGUlYtxYnrUh20jo0krRqxpqs44FNaU1Zm9J6yjzEYh7-afNwd9RD06SHyBNehtd6uVXi5et2Lz1fern5h5dExMedCh-FCR_1Uz4mSjPobcugcjyDJ1_189l5P6Xf-zlg3P7fT27IZnmRTTJq403aHH7XJvSxTfopmyXtNpk_2PTmBEivCOAxrhwx-YsAo_8GWPFfgNpUgK3icHSDw81yh-LXHFpaHHYbq953WNnq0NfhsLjTYUGXg1x1WDjhMD7t4J_vsuYplxthl9m1LsURlxUtLqn9Lm6ry6U-l6Ih011xyb3mkjnlMn-ecNUrlGQJxQuEzscEyRbCOUJ7nhAsFBIvC9PGkTJhdUTw1AsfGmMNwp5G4bm9QmyfsPkjoblN-OC08OKnwsVOIe2cMGj0fiVUfCPMDJj-R2Hksrlx3eyNR34V1hizY8KJccH3m-A3cv8y3aRw8G_hwj2hYUZIGXkpYeMcBZ8ym6Hs8iv-h5XSTKV1kTJ3ifLocqU3rPxi_GncNmLrFKtYWW88u1l5plzJ3m5yVDlmdFQr54xuozKupBLKt83K_Rbl-XfU_Kn0vae8ckB5-qCysU3ZaVww8o8rXSeVkjPK8CfK62eVZLsyY2R1KMv6lbAxfVGpumS23yl7B5S3B5XVQ8r5y8rYsFJ2Tfn5ulJ7Q1k0qmz5XXl8QnF96f1HTwzODXRP3u8iO9hcn4gnqqJ5b0WrgrHG-rp4MFq3PbitsTpeva2yprwgv6AwFCpYlhfKL38j_wE8T-tv"
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 1183ms