Open
Cached
·
just now
22
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
Performance Headers
3 headers
Accept-Ranges
Performance
bytes
Connection
Performance
close
Vary
Performance
x-device-type, Accept-Encoding
Caching Headers
2 headers
Age
Caching
10360
Cache-Control
Caching
public, s-maxage=21600
Content Headers
2 headers
Content-Length
Content
50877
Content-Type
Content
text/html; charset=utf-8
Server Headers
0 headers
No server headers found
CORS Headers
0 headers
No CORS headers found
Cookies Headers
0 headers
No cookies headers found
Other Headers
11 headers
Date
Other
Sun, 11 Jan 2026 08:09:15 GMT
Strip-Cookies
Other
true
X-Ads-Geo-Loc
Other
NA
X-Cache
Other
HIT, HIT
X-Device-Type
Other
desktop
X-Download-Options
Other
noopen
X-Edge-Pop
Other
Fastly/US-East/IAD/cache-iad-kcgs7200095-IAD
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
c454c215-fb89-40fd-952b-8240864231dc
X-Robots-Tag
Other
all
X-Served-By
Other
cache-lon420100-LON, cache-iad-kcgs7200095-IAD
Recommendations
Enable compression (gzip/brotli) to improve performance