HTTP Headers Analysis for https://navionics.com

Detected Technologies from Headers

See all in URL Inspect 34

Cloudflare NEL Monitoring

YouTube

Google AdSense

Criteo Active incidents

Google Tag Manager

Bing

Google Hosted Libraries

AppNexus (Xandr)

Yahoo

Google DoubleClick

Google Analytics

Microsoft Advertising

Google Conversion Tracking

Tealium

Cloudflare CDN

Google Static File Front End

Outbrain

Google Fonts

AppDynamics

Cloudflare Web Analytics

Hotjar

Cloudinary

Teads

Google Search

Facebook

Snapchat

TrustArc

Google Optimize

Akamai

The Trade Desk

Sentry

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Basic

script-src; default-src; style-src; +10 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Age

Caching

15123

Cache-Control

Caching

public, max-age=7200

age: 15123
cache-control: public, max-age=7200

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: __cf_bm=8ZtIoWpQnJWtW_Evb3pSG5o50a7jYRLHVwFHueR.aQo-1774783087-1.0.1.1-lzNKPTGvEFSGGkpdlWrij6M.4ppUgtQa7LKNT8B_mPQ6shPXixPFxqXbO4TINpnw0vFSpX0FcslUx2Axh6v9.GEUOvjaICqtjfGCZJRXWhI; path=/; expires=Sun, 29-Mar-26 11:48:07 GMT; domain=.www.garmin.com; HttpOnly; Secure; SameSite=None
_cfuvid=8DfAsNVCKAzA4NrGUqRC2DFzWg_3ERiFVxy898C_o.8-1774783087269-0.0.1.1-604800000; path=/; domain=.www.garmin.com; HttpOnly; Secure; SameSite=None

Other Headers

Cf-Cache-Status

Other

HIT

Cf-Ray

Other

9e3e78d729e90bfe-IAD

Date

Other

Sun, 29 Mar 2026 11:18:07 GMT

Nel

Other

Report-To Group cf-nel max-age: 1w

success: 1.0%

Origin-Agent-Cluster

Other

?1

Report-To

Other

Group cf-nel max-age: 1w

Endpoint 1 https://a.nel.cloudflare.com/report/v4?s=XlYjvcXyWG4gzET%2Bd%2BMiZ66A6kF4fMRdEevVGOx5YhLKf2ZREZftVyXesLFHXmTzmuszV9OLwfWvUr0%2FF4TBru5sFerM90MvIkjcWvyzDsnRNIVSbvrdmYKZUHZtdnxG

X-Application-Context

Other

KC3

X-Application-Id

Other

WWW_CATEGORY_PAGES

X-Application-Platform

Other

GPC

X-Dns-Prefetch-Control

Other

off

X-Locale

Other

en-US

X-Permitted-Cross-Domain-Policies

Other

none

cf-cache-status: HIT
cf-ray: 9e3e78d729e90bfe-IAD
date: Sun, 29 Mar 2026 11:18:07 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
origin-agent-cluster: ?1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XlYjvcXyWG4gzET%2Bd%2BMiZ66A6kF4fMRdEevVGOx5YhLKf2ZREZftVyXesLFHXmTzmuszV9OLwfWvUr0%2FF4TBru5sFerM90MvIkjcWvyzDsnRNIVSbvrdmYKZUHZtdnxG"}],"group":"cf-nel","max_age":604800}
x-application-context: KC3
x-application-id: WWW_CATEGORY_PAGES
x-application-platform: GPC
x-dns-prefetch-control: off
x-locale: en-US
x-permitted-cross-domain-policies: none

Recommendations

Enable compression (gzip/brotli) to improve performance