Open
Cached
·
just now
22
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Basic
default-src; script-src; style-src; +10 more
default-src 'self' https://play.vidyard.com; script-src 'unsafe-inline' 'unsafe-eval' 'report-sample' 'self' blob: data: https://assets.trendemon.com https://bat.bing.com https://connect.facebook.net https://consent.cookiebot.com https://consentcdn.cookiebot.com https://googleads.g.doubleclick.net https://j.6sc.co https://js-eu1.hs-analytics.net https://js-eu1.hs-banner.com https://js-eu1.hs-scripts.com https://js-eu1.hsadspixel.net https://js-eu1.hsforms.net https://js-eu1.hubspot.com https://js-eu1.usemessages.com https://js.chilipiper.com https://js.zi-scripts.com https://play.vidyard.com https://scout-cdn.salesloft.com https://scripts.clarity.ms https://snap.licdn.com https://sslwidgetmaster.investorroom.com https://static.ads-twitter.com https://tag.demandbase.com https://trackingapi.trendemon.com https://www.clarity.ms https://www.googletagmanager.com https://www.influ2.com; style-src 'unsafe-inline' 'report-sample' 'self' https://ams.wpml.org https://fonts.googleapis.com https://sslwidgetmaster.investorroom.com https://play.vidyard.com; object-src 'none'; base-uri 'self'; connect-src 'self' https://a.clarity.ms https://ams.wpml.org https://analytics.google.com https://api-eu1.hubapi.com https://api-eu1.hubspot.com https://api.company-target.com https://b.clarity.ms https://bat.bing.com https://c.6sc.co https://consentcdn.cookiebot.com https://cta-eu1.hubspot.com forms-eu1.hubspot.com https://d.clarity.ms https://e.clarity.ms https://epsilon.6sense.com https://f.clarity.ms https://fonts.googleapis.com https://forms-eu1.hsforms.com https://h.clarity.ms https://i.clarity.ms https://id.rlcdn.com https://ipv6.6sc.co https://j.clarity.ms https://js.zi-scripts.com https://k.clarity.ms https://l.clarity.ms https://localhost:4443 https://n.clarity.ms https://o.clarity.ms https://pagead2.googlesyndication.com https://perf-eu1.hsforms.com https://play.vidyard.com https://px.ads.linkedin.com https://region1.analytics.google.com https://region1.google-analytics.com https://scout.salesloft.com https://static.hsappstatic.net https://stats.g.doubleclick.net https://t.influ2.com https://tag-logger.demandbase.com https://v.clarity.ms https://ws.zoominfo.com https://www.facebook.com https://www.google-analytics.com https://www.google.co.il https://www.google.co.in https://www.google.co.uk https://www.google.co.za https://www.google.com https://www.google.com.tr https://www.google.de https://www.google.fi https://www.google.lt https://www.google.se https://www.googleadservices.com https://www.googletagmanager.com https://y.clarity.ms https://z.clarity.ms; font-src 'self' data: https://fonts.gstatic.com https://res.cdn.office.net; frame-src 'self' https://26634817.hs-sites-eu1.com https://app-eu1.hubspot.com https://consentcdn.cookiebot.com https://forms-eu1.hsforms.com https://play.vidyard.com https://s.company-target.com https://www.googletagmanager.com; img-src 'self' data: blob: https://analytics.twitter.com https://b.6sc.co https://bat.bing.com https://c.clarity.ms https://cdn.vidyard.com https://connect.facebook.net https://cta-eu1.hubspot.com https://forms-eu1.hsforms.com https://id.rlcdn.com https://imgsct.cookiebot.com https://pagead2.googlesyndication.com https://perf-eu1.hsforms.com https://pic.trendemon.com https://play.vidyard.com https://px.ads.linkedin.com https://px4.ads.linkedin.com https://secure.gravatar.com https://sslwidgetmaster.investorroom.com https://static.hubspot.com https://t.co https://t.influ2.com https://track-eu1.hubspot.com https://trackingapi.trendemon.com https://www.facebook.com https://www.google.ae https://www.google.bg https://www.google.co.il https://www.google.co.in https://www.google.co.uk https://www.google.co.za https://www.google.com https://www.google.com.tr https://www.google.com.vn https://www.google.de https://www.google.fi https://www.google.lt https://www.google.lv https://www.google.se https://www.googletagmanager.com; manifest-src 'self'; media-src 'self'; report-uri https://6965fd0ec4e259476d593d43.endpoint.csper.io?v=2; worker-src blob:;
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
autoplay=*, camera=*, cross-origin-isolated=*, display-capture=*, document-domain=*, encrypted-media=*, geolocation=*, keyboard-map=*, microphone=*, payment=*, sync-xhr=*
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
Performance Headers
3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding,Cookie
Caching Headers
1 headers
Cache-Control
Caching
max-age=63072000
Content Headers
1 headers
Content-Type
Content
text/html; charset=UTF-8
Server Headers
2 headers
Server
Server
cloudflare
X-Powered-By
Server
WP Engine
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
__cf_bm=XBSjVHST0PQif.5XrWOIKUa41BAIWZfE6N.fPHSTtn4-1768885235-1.0.1.1-yi8IuYwbFS1XVfOpovXZY5D9OF8Bp9WHkNDu2XHua86DLkrytMgwBYYvLH0C6JJDue98mZg5bcakYd73XXHK.jlrmhggToSLXopVqSDiW5U; path=/; expires=Tue, 20-Jan-26 05:30:35 GMT; domain=.sapiens.com; HttpOnly; Secure; SameSite=None
Other Headers
8 headers
Alt-Svc
Other
h3=":443"; ma=86400
Cf-Cache-Status
Other
DYNAMIC
Cf-Ray
Other
9c0c024e2a6f9c22-IAD
Date
Other
Tue, 20 Jan 2026 05:00:35 GMT
Link
Other
<https://sapiens.com/>; rel=shortlink
X-Cache
Other
HIT: 2
X-Cache-Group
Other
normal
X-Cacheable
Other
SHORT
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology