DNS Gurus
Cached · just now
19 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Good
default-src; script-src; style-src; +7 more
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
geolocation=(), microphone=(), camera=(), payment=()
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Strengthen CSP by removing 'unsafe-eval'

Performance Headers

1 headers
Connection
Performance
close

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"9ea863e14ec64fac9fd72677d87e8a97"

Content Headers

2 headers
Content-Length
Content
20003
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
nginx/1.24.0 (Ubuntu)
X-Runtime
Server
0.008616

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
_ncw_sales_session=vKHpSfwqDzoCXSO8UkZdJVCkeY%2FhLSUL%2BzXcmiyYG%2Fl0A0fJarUYhegOmM5EEAGRa0%2FW7GtbncHokM%2BzHqwHdCcyBT6ST6de9CbuC%2B2wLLihIAd6W0JDVo5cC%2Bjzpa8fVsLQnFmcTG2MazIbLAQ58fOePL4NS4EWy7cnEPIWYVcdQgGmuTMLG3Y4Yt9842U0a3jC%2BuhheX8XDqoVP5IBoZrKu89Yy%2FFyhL13G%2B59PyrPNO4bFy1PJYDusAiacnCtvxqnUqvnMcR7hAKhBar3SFMhyhIwd%2FJwV%2Bs%3D--ZhURfX0ZdvJIWue%2B--wNRvCZmPH%2FsONFOSt1xrwQ%3D%3D; path=/; secure; httponly; samesite=lax

Other Headers

4 headers
Date
Other
Thu, 05 Feb 2026 12:05:01 GMT
Link
Other
</assets/application-94741183.css>; rel=preload; as=style; nopush
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
616c5ae1-c1a6-4a9c-9e08-0e4539af28a0

Recommendations

Enable compression (gzip/brotli) to improve performance