DNS Gurus
Cached · just now
14 Headers

Detected Technologies from Headers

See all in URL Inspect 6
AWS logo AWS Active incidents AWS CloudFront logo AWS CloudFront Google API JS Client logo Google API JS Client Google Fonts logo Google Fonts Microsoft Azure logo Microsoft Azure Pendo logo Pendo

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Google Fonts logo
Basic
frame-ancestors; default-src; style-src; +5 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close

Caching Headers

Cache-Control
Caching
private

Content Headers

Content-Length
Content
20381
Content-Type
Content
text/html; charset=utf-8

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date
Other
Mon, 11 May 2026 19:18:09 GMT
Via
AWS CloudFront logo
Other
1.1 a71dc86d67780d7478c72e1b147b8a32.cloudfront.net (CloudFront)
X-Amz-Cf-Id
AWS CloudFront logo
Other
Vn2UtpTHCedTuKPaU-yHC1teYLRBVzAIZHlFsvGimk3gy2sNenukYg==
X-Amz-Cf-Pop
AWS CloudFront logo
Other
IAD61-P10
X-Cache
AWS CloudFront logo
Other
Miss from cloudfront

Recommendations

Enable compression (gzip/brotli) to improve performance