Open
Cached
·
just now
30
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
connection: close
Caching Headers
Cache-Control
private
cache-control: private
Content Headers
Content-Length
13
Content-Type
text/plain; charset=utf-8
content-length: 13 content-type: text/plain; charset=utf-8
Server Headers
Server
Microsoft-IIS/10.0
X-Aspnet-Version
4.0.30319
X-Powered-By
ASP.NET
server: Microsoft-IIS/10.0 x-aspnet-version: 4.0.30319 x-powered-by: ASP.NET
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Fri, 10 Apr 2026 16:59:05 GMT
Isocdi
0
Microsoftsharepointteamservices
16.0.0.27125
Ms-Cv
ogioIWvQAMCoofFGdQbhcw.0
P3p
CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
Request-Id
21a808a2-d06b-c000-a8a1-f1467506e173
Spiislatency
0
Splogid
21a808a2-d06b-c000-a8a1-f1467506e173
Sprequestduration
18
Sprequestguid
21a808a2-d06b-c000-a8a1-f1467506e173
X-1dscollectorurl
https://mobile.events.data.microsoft.com/OneCollector/1.0/
X-Ariacollectorurl
https://browser.pipe.aria.microsoft.com/Collector/3.0/
X-Databoundary
NONE
X-Forms_based_auth_required
https://verisk-my.sharepoint.com/_forms/default.aspx?ReturnUrl=/_layouts/15/error.aspx&Source=%2f_layouts%2f15%2fauthenticate.aspx%3fSource%3d%252F
X-Forms_based_auth_return_url
https://verisk-my.sharepoint.com/_layouts/15/error.aspx
X-Idcrl_auth_params_v1
IDCRL Type="BPOSIDCRL", EndPoint="/_vti_bin/idcrl.svc/", RootDomain="sharepoint.com", Policy="MBI"
X-Ms-Invokeapp
1; RequireReadOnly
X-Msdavext_error
917656; Access+denied.+Before+opening+files+in+this+location%2c+you+must+first+browse+to+the+web+site+and+select+the+option+to+login+automatically.
X-Networkstatistics
0,64872,0,0,10,18054,18054,1288
X-Sharepointhealthscore
1
date: Fri, 10 Apr 2026 16:59:05 GMT isocdi: 0 microsoftsharepointteamservices: 16.0.0.27125 ms-cv: ogioIWvQAMCoofFGdQbhcw.0 p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI" request-id: 21a808a2-d06b-c000-a8a1-f1467506e173 spiislatency: 0 splogid: 21a808a2-d06b-c000-a8a1-f1467506e173 sprequestduration: 18 sprequestguid: 21a808a2-d06b-c000-a8a1-f1467506e173 x-1dscollectorurl: https://mobile.events.data.microsoft.com/OneCollector/1.0/ x-ariacollectorurl: https://browser.pipe.aria.microsoft.com/Collector/3.0/ x-databoundary: NONE x-forms_based_auth_required: https://verisk-my.sharepoint.com/_forms/default.aspx?ReturnUrl=/_layouts/15/error.aspx&Source=%2f_layouts%2f15%2fauthenticate.aspx%3fSource%3d%252F x-forms_based_auth_return_url: https://verisk-my.sharepoint.com/_layouts/15/error.aspx x-idcrl_auth_params_v1: IDCRL Type="BPOSIDCRL", EndPoint="/_vti_bin/idcrl.svc/", RootDomain="sharepoint.com", Policy="MBI" x-ms-invokeapp: 1; RequireReadOnly x-msdavext_error: 917656; Access+denied.+Before+opening+files+in+this+location%2c+you+must+first+browse+to+the+web+site+and+select+the+option+to+login+automatically. x-networkstatistics: 0,64872,0,0,10,18054,18054,1288 x-sharepointhealthscore: 1
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology