Open
Cached
·
just now
19
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
accelerometer=(), autoplay=(), camera=(); +11 more
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
Performance Headers
Connection
close
Transfer-Encoding
chunked
connection: close transfer-encoding: chunked
Caching Headers
Cache-Control
must-revalidate, no-cache, no-store, post-check=0, pre-check=0, private
cache-control: must-revalidate, no-cache, no-store, post-check=0, pre-check=0, private
Content Headers
Content-Type
text/html; charset=UTF-8
content-type: text/html; charset=UTF-8
Server Headers
No server headers found
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Accept-Ch
Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Bitness
Date
Wed, 06 May 2026 06:38:34 GMT
Reporting-Endpoints
cspv="https://remote.isams.com/portal/cspv"
X-Permitted-Cross-Domain-Policies
none
X-Trace-Id
d456eece-cbde-4a17-bd3e-03eb5e83709a
X-Ua-Compatible
IE=edge
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Bitness date: Wed, 06 May 2026 06:38:34 GMT reporting-endpoints: cspv="https://remote.isams.com/portal/cspv" x-permitted-cross-domain-policies: none x-trace-id: d456eece-cbde-4a17-bd3e-03eb5e83709a x-ua-compatible: IE=edge
Recommendations
Enable compression (gzip/brotli) to improve performance