Open
Cached
·
just now
16
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Basic
default-src; upgrade-insecure-requests; script-src; +12 more
default-src 'self'; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://source.zoom.us https://code.jquery.com https://js.braintreegateway.com https://js.stripe.com https://checkout.razorpay.com https://*.iubenda.com https://cdn.iubenda.com https://cs.iubenda.com https://browser-update.org https://tally.so https://www.youtube.com https://youtube.com https://*.ytimg.com https://*.googlevideo.com https://*.gstatic.com https://*.paypalobjects.com https://*.paypal.com https://*.zohopublic.in https://apis.google.com https://accounts.google.com https://l.getsitecontrol.com https://s.adroll.com https://a.quora.com; style-src 'self' 'unsafe-inline' https://cdn.quilljs.com https://cdnjs.cloudflare.com https://checkout.razorpay.com https://www.youtube.com https://youtube.com https://*.gstatic.com https://assets.braintreegateway.com; img-src 'self' data: blob: https://*.googleusercontent.com https://*.stripe.com https://lh3.googleusercontent.com https://*.cloudfront.net https://*.wikimedia.org https://*.stream-io-cdn.com https://img.youtube.com https://*.ytimg.com https://i.ytimg.com; media-src 'self' https://*.cloudfront.net https://www.youtube.com https://youtube.com https://*.googlevideo.com https://player.vimeo.com https://*.stream-io-cdn.com; font-src 'self' data: https://*.gstatic.com; connect-src 'self' https://api.enthu.com https://api-staging.enthu.net https://*.sentry.io https://*.google-analytics.com https://*.googleapis.com https://*.firebaseio.com https://*.firebaseapp.com https://accounts.google.com https://www.facebook.com https://facebook.com https://graph.facebook.com wss://*.stream-io-api.com https://*.stream-io-api.com https://www.youtube.com https://youtube.com https://*.googlevideo.com https://*.ytimg.com https://*.braintreegateway.com https://*.braintree-api.com https://*.paypal.com https://*.zohopublic.in wss://*.zohopublic.in https://cs.iubenda.com https://l.getsitecontrol.com https://s.adroll.com https://d.adroll.com https://a.quora.com https://q.quora.com; frame-src 'self' https://js.braintreegateway.com https://assets.braintreegateway.com https://*.paypal.com https://*.paypalobjects.com https://checkout.razorpay.com https://api.razorpay.com https://js.stripe.com https://*.firebaseapp.com https://accounts.google.com https://www.facebook.com https://facebook.com https://www.youtube.com https://youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://vimeo.com https://www.loom.com https://loom.com https://*.zohopublic.in https://tally.so https://*.iubenda.com; child-src 'self' https://www.youtube.com https://youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://vimeo.com; worker-src 'self' blob:; object-src 'none'; base-uri 'self'; form-action 'self' https://checkout.razorpay.com; frame-ancestors 'self'
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
1 headers
Connection
Performance
close
Caching Headers
4 headers
Cache-Control
Caching
no-cache, no-store, must-revalidate, private, max-age=0
Etag
Caching
"lli21x"
Expires
Caching
Thu, 01 Jan 1970 00:00:00 GMT
Pragma
Caching
no-cache
Content Headers
2 headers
Content-Length
Content
83310
Content-Type
Content
text/html
Server Headers
0 headers
No server headers found
CORS Headers
0 headers
No CORS headers found
Cookies Headers
0 headers
No cookies headers found
Other Headers
8 headers
Date
Other
Mon, 02 Feb 2026 11:32:00 GMT
Link
Other
<./_app/immutable/assets/vendor-core.d9c7dceb.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/vendor-calendar.f02f98ff.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/0.a95babe3.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/text.77e31e56.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/vendor-svelte-libs.8a219551.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/schedule.1ab133e2.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/main.38d6671a.css>; rel="preload";as="style"; nopush, <./_app/immutable/assets/CourseMeeting.fce6d9d7.css>; rel="preload";as="style"; nopush, <./_app/immutable/entry/start.63333e70.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-core.119fcf87.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-utils.2a24d2ac.js>; rel="modulepreload"; nopush, <./_app/immutable/entry/app.81a0c2a7.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-calendar.54187a58.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-sentry.9099556e.js>; rel="modulepreload"; nopush, <./_app/immutable/nodes/0.d3451ae2.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/user.request.2c9289f4.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-firebase.eb10cd0f.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-stream.97ff62f1.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/cross.b14bc420.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/text.svelte_svelte_type_style_lang.c9554a73.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/vendor-svelte-libs.55d66927.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/banner_card.286f14b2.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/body.dbec6199.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/texts.c80be204.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/participants.8f131361.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/custom-badge.893f7b0f.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/image_avatar.bf535036.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/shared.request.2fa757f2.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/modal-container.319ec462.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/quora-pixel.3ba5220f.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/button.e65c5124.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/link-button.294bda94.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/auth.0323464e.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/bar-loading.a7b232c4.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/container.78ad715e.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/heading.d80c60fd.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/auth.types.f2e23e2a.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/phone-number-otp.3e27e8cb.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/box.4f29d1f8.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/book-open.a6c01c73.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/course.request.1a9ff5cb.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/rooms.98457896.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/loading.b11db9c7.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/container.548c66e6.js>; rel="modulepreload"; nopush, <./_app/immutable/nodes/7.db1a0c03.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/core.types.72ac9158.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/footer.8dcdb35f.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/anchor.b448e02d.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/col.aef8e8de.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/row.5ed36585.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/search-ui.f81e8b7a.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/get-to-know-us.4903d569.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/clock-icon.a6fa77b9.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/scrollable-section.d22d9d7a.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/process_age.328926f5.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/sub-heading.08e67f03.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/infinite-scroll.4424e069.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/new-batch.26b63a56.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/arrowleft.94f5dc45.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/arrowright.2c24ac34.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/timing.37fd4320.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/share.aab39a69.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/clipboard.18c65b77.js>; rel="modulepreload"; nopush, <./_app/immutable/chunks/string.effe3d40.js>; rel="modulepreload"; nopush
Via
Other
1.1 e5d628410735781d390386fc83d23e1c.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
3KC-mwY0MpIIOR6yF7_LG1WJzK8LDnhY2OQ9tVnSGuGXzFZ-SiJWQw==
X-Amz-Cf-Pop
Other
IAD61-P11
X-Cache
Other
Miss from cloudfront
X-Request-Id
Other
a97983d8
X-Sveltekit-Page
Other
true
Recommendations
Enable compression (gzip/brotli) to improve performance