Open
Cached
·
just now
17
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=300
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
Accept-Encoding
accept-ranges: bytes connection: close vary: Accept-Encoding
Caching Headers
Cache-Control
max-age=0, no-cache, no-store
cache-control: max-age=0, no-cache, no-store
Content Headers
Content-Length
65
Content-Type
text/xml; charset=UTF-8
content-length: 65 content-type: text/xml; charset=UTF-8
Server Headers
No server headers found
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Fri, 10 Apr 2026 02:33:56 GMT
Traffic-Path
NVADC2
Via
1.1 varnish
X-B
OT7pu8Xazv8kOHAME9TG23--F_use1_load_testing_teads_tv
X-Cache
MISS
X-Cache-Hits
0
X-Check-Cacheable
NO
X-Served-By
cache-iad-kcgs7200023-IAD
X-Timer
S1775788437.798659,VS0,VE2
X-U
/
date: Fri, 10 Apr 2026 02:33:56 GMT traffic-path: NVADC2 via: 1.1 varnish x-b: OT7pu8Xazv8kOHAME9TG23--F_use1_load_testing_teads_tv x-cache: MISS x-cache-hits: 0 x-check-cacheable: NO x-served-by: cache-iad-kcgs7200023-IAD x-timer: S1775788437.798659,VS0,VE2 x-u: /
Recommendations
Enable compression (gzip/brotli) to improve performance