Open
Cached
·
just now
11
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
connection: close
Caching Headers
Cache-Control
private
cache-control: private
Content Headers
Content-Length
102137
Content-Type
text/html; charset=utf-8
content-length: 102137 content-type: text/html; charset=utf-8
Server Headers
No server headers found
CORS Headers
No CORS headers found
Cookies Headers
Set-Cookie
ASP.NET_SessionId
huowvl1nyoartkaiwjknmyry
huowvl1nyoartkaiwjknmyry
path=/
SameSite=Lax
SameSite=None
Secure
HttpOnly
EPi_NumberOfVisits
1,2026-05-28T18:56:13
1,2026-05-28T18:56:13
path=/
expires=Fri, 28-May-2027 18:56:13 GMT
set_me
ffffffff09721f7745525d5f4f58455e445a4a423660
ffffffff09721f7745525d5f4f58455e445a4a423660
path=/
httponly
Max-Age=30m
Version=1
www.uc.se
rd7o00000000000000000000ffff0a7a016eo80
rd7o00000000000000000000ffff0a7a016eo80
path=/
Secure
Httponly
ASP.NET_SessionId
huowvl1nyoartkaiwjknmyry
huowvl1nyoartkaiwjknmyry
path=/
SameSite=Lax
SameSite=None
Secure
HttpOnly
EPi_NumberOfVisits
1,2026-05-28T18:56:13
1,2026-05-28T18:56:13
path=/
expires=Fri, 28-May-2027 18:56:13 GMT
set_me
ffffffff09721f7745525d5f4f58455e445a4a423660
ffffffff09721f7745525d5f4f58455e445a4a423660
path=/
httponly
Max-Age=30m
Version=1
www.uc.se
rd7o00000000000000000000ffff0a7a016eo80
rd7o00000000000000000000ffff0a7a016eo80
path=/
Secure
Httponly
TS01034a26
01c4cad012d32062ee642de4dd7f6f29bc0bac66d5804543025f8050aae84bed830a1e3b4262847caa0e71c2561616fa72ccb438646653eef4ca95846d1c81a3042ea5672b9d2ea51723ad622c9fec19b4a2b02db36199664e9d24a2054a14d74ef3e82932883fad4441e20b2f7884c6e3d0eca3ab
01c4cad012d32062ee642de4dd7f6f29bc0bac66d5804543025f8050aae84bed830a1e3b4262847caa0e71c2561616fa72ccb438646653eef4ca95846d1c81a3042ea5672b9d2ea51723ad622c9fec19b4a2b02db36199664e9d24a2054a14d74ef3e82932883fad4441e20b2f7884c6e3d0eca3ab
Path=/
Other Headers
Date
Thu, 28 May 2026 18:56:13 GMT
X-Permitted-Cross-Domain-Policies
script-src 'self'
date: Thu, 28 May 2026 18:56:13 GMT x-permitted-cross-domain-policies: script-src 'self'
Recommendations
Enable compression (gzip/brotli) to improve performance