DNS Gurus
Cached · just now
26 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
close
Vary
Performance
accept-encoding

Caching Headers

1 headers
Cache-Control
Caching
max-age=604800

Content Headers

2 headers
Content-Length
Content
0
Content-Type
Content
application/json; charset=UTF-8

Server Headers

1 headers
Server
Server
cloudflare

CORS Headers

6 headers
Access-Control-Allow-Credentials
Cors
true
Access-Control-Allow-Headers
Cors
Authorization, Cache-Control, CF-Cache-Status, cf-ipcountry, Content-Type, Server-Timing, x-enzuzo-caching, x-enzuzo-city, x-enzuzo-country, x-enzuzo-region, x-enzuzo-requestid
Access-Control-Allow-Methods
Cors
GET, HEAD, OPTIONS
Access-Control-Allow-Origin
Cors
*
Access-Control-Expose-Headers
Cors
Authorization, Cache-Control, CF-Cache-Status, cf-ipcountry, Content-Type, Server-Timing, x-enzuzo-caching, x-enzuzo-city, x-enzuzo-country, x-enzuzo-region, x-enzuzo-requestid
Access-Control-Max-Age
Cors
86400

Cookies Headers

0 headers
No cookies headers found

Other Headers

11 headers
Alt-Svc
Other
h3=":443"; ma=86400
Cf-Ray
Other
9b1b14d3b9fdbacb-IAD
Content-Security-Policy-Report-Only
Other
script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=ZZkI.Rqsg2YYVzBfHtStFt7hjYMRRub9Pp5DT8IYW5w-1766358925.3906682-1.0.1.1-YDMJLfI.39Kinn_PUQd.l8.lpyRXIOmITFimQcSVRJCrTHxSyc6PiQ2PKFdpa.Hb84uUb0w6Vb1LIRF5LN9_x.I2bjbF5ZwwvVEg6FIr_H6.EbSMnVfv4pX22Du5iwXd51GbZVV8fUZGEFECvI2vJIaCZTgPMdQwSZoNOBwTTapIgKgLDTyhyZtbqjxNT_4O; report-to cf-csp-endpoint
Date
Other
Sun, 21 Dec 2025 23:15:25 GMT
Report-To
Other
{"group":"cf-csp-endpoint","max_age":86400,"endpoints":[{"url":"https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=ZZkI.Rqsg2YYVzBfHtStFt7hjYMRRub9Pp5DT8IYW5w-1766358925.3906682-1.0.1.1-YDMJLfI.39Kinn_PUQd.l8.lpyRXIOmITFimQcSVRJCrTHxSyc6PiQ2PKFdpa.Hb84uUb0w6Vb1LIRF5LN9_x.I2bjbF5ZwwvVEg6FIr_H6.EbSMnVfv4pX22Du5iwXd51GbZVV8fUZGEFECvI2vJIaCZTgPMdQwSZoNOBwTTapIgKgLDTyhyZtbqjxNT_4O"}]}
Server-Timing
Other
cfEdge;dur=6,cfOrigin;dur=0
X-Enzuzo-City
Other
Leesburg
X-Enzuzo-Continent
Other
NA
X-Enzuzo-Country
Other
US
X-Enzuzo-Region
Other
US-VA
X-Enzuzo-Requestid
Other
41563a859d4c4ec19a8696410c52a06b

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 53ms