DNS Gurus
Cached · just now
18 Headers

Detected Technologies from Headers

See all in URL Inspect 12
YouTube logo YouTube Arkose Labs logo Arkose Labs AWS logo AWS Brightcove logo Brightcove Cloudinary logo Cloudinary Salesforce Cloud logo Salesforce Cloud Salesforce Sites logo Salesforce Sites Slack logo Slack Twitter logo Twitter Vidyard logo Vidyard Vimeo logo Vimeo Wistia logo Wistia

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Weak
upgrade-insecure-requests, Analyze
Content-Security-Policy-Report-Only
YouTube logo
Good
default-src; script-src; style-src; +7 more Analyze
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Significantly strengthen CSP directives
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

Cache-Control
Caching
no-cache,must-revalidate,max-age=0,no-store,private
Expires
Caching
Thu, 01 Jan 1970 00:00:00 GMT

Content Headers

Content-Type
Content
text/html; charset=UTF-8

Server Headers

Server
Server
sfdcedge

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Date
Other
Fri, 20 Feb 2026 13:43:52 GMT
X-Request-Id
Other
384fe1ac025f9672362b581e045672aa
X-Robots-Tag
Other
none
X-Sfdc-Edge-Cache
Other
MISS
X-Sfdc-Request-Id
Other
384fe1ac025f9672362b581e045672aa

Recommendations

Enable compression (gzip/brotli) to improve performance