DNS Gurus
Cached · just now
22 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Good
default-src; font-src; img-src; +7 more
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Strengthen CSP by removing 'unsafe-eval'
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
close
Vary
Performance
Accept-Encoding

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"5d5aeb07f83357649eb31cb382d58e88"

Content Headers

2 headers
Content-Length
Content
15607
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
Google Frontend
X-Runtime
Server
0.004798

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
u=n%2FYe5CW1abHkdVs3hH5n0AoIz7QNDfuBLPGUmb%2FPTCJ8%2B0VvdhFO2trPavWSQoHlIrnWrPvGP2Is%2FCty%2B6YBINrA9Y88w%2B3Xj3emIBzjgTA3TVNJR7WKVdn%2B3%2F3GBEZpaImeZ1uGY0Ca22c0Z%2BTo5aMReXF0%2FHsjXovOLhYbgMOV6W9Yw9sEkgsK3SM2GGFmq3Jnkom%2B4%2FxXNqP0dz6c4zFjUu%2B3YlSSOk9Kuaoo8G8Dq1vqD2IOGwMX51qyco6KKaWPiiKxl76dguPnHQunnP%2BnOLq%2F4dndcCpjdUmKPg%3D%3D--toC532uiBUAJg95x--HWwVoBGB4ZCae13ENUknCg%3D%3D; domain=everlit.audio; path=/; expires=Sat, 21 Mar 2026 05:41:35 GMT; secure; httponly; samesite=lax

Other Headers

7 headers
Alt-Svc
Other
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Date
Other
Wed, 21 Jan 2026 05:41:35 GMT
Link
Other
<https://assets.everlit.audio/assets/tailwind-8ae70b5467001033ab764653da9fb5b26cadc691329a40bb3f0c40b53c3644c7.css>; rel=preload; as=style; nopush,<https://assets.everlit.audio/assets/application-88c48c352a1ddc18d1f1208d022989278fc24f9259e4f9ba7d7cf5b017c02f90.css>; rel=preload; as=style; nopush,<https://kit.fontawesome.com/0bc0a79394.js>; rel=preload; as=script; nopush
Via
Other
1.1 google
X-Cloud-Trace-Context
Other
ce6c114fca2a5a23fc6edb9c6b926d2b
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
511dc356-2b11-4791-9144-1beaa93c128c

Recommendations

Enable compression (gzip/brotli) to improve performance