HTTP Headers Analysis for https://webse.com.my

Detected Technologies from Headers

See all in URL Inspect 15

Cloudflare NEL Monitoring

Cloudflare CDN

Cloudflare CDNJS

Cloudflare Web Analytics

Google Analytics

Google API JS Client

Google DoubleClick

Google Fonts

Google Search

Google Static File Front End

Google Tag Manager

Microsoft Clarity

PostHog

YouTube

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=63072000; includeSubDomains; preload

Content-Security-Policy

Basic

upgrade-insecure-requests,; block-all-mixed-content; default-src; +13 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin

Permissions-Policy

Present

geolocation=(), midi=(), microphone=(); +5 more

Recommendations

• Improve CSP by adding more specific directives and removing 'unsafe-inline'

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

connection: close
transfer-encoding: chunked

Caching Headers

Cache-Control

Caching

private, no-cache, no-store, must-revalidate

Expires

Caching

Thu, 01 Jan 1970 00:00:00 GMT

Pragma

Caching

no-cache

cache-control: private, no-cache, no-store, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache

Content Headers

Content-Type

Content

text/html;charset=UTF-8

content-type: text/html;charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

Access-Control-Allow-Methods

Cors

GET POST PUT DELETE

Access-Control-Allow-Origin

Cors

https://www.webse.com.my

access-control-allow-methods: GET POST PUT DELETE
access-control-allow-origin: https://www.webse.com.my

Cookies Headers

Set-Cookie

Cookies

set-cookie: JSESSIONID=B56875C2710DD7B772C906AC4A588382; Path=/; Secure; HttpOnly;Secure;SameSite=Lax
COOKIE_SUPPORT=true; Max-Age=31536000; Expires=Wed, 09 Jun 2027 07:45:48 GMT; Path=/; Secure; HttpOnly;Secure;SameSite=Lax
GUEST_LANGUAGE_ID=en_US; Max-Age=31536000; Expires=Wed, 09 Jun 2027 07:45:48 GMT; Path=/; Secure; HttpOnly;Secure;SameSite=Lax

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

a08e84d47edcd64d-IAD

Date

Other

Tue, 09 Jun 2026 07:45:49 GMT

Nel

Other

Report-To Group cf-nel max-age: 1w

success: 0.0%

Report-To

Other

Group cf-nel max-age: 1w

Endpoint 1 https://a.nel.cloudflare.com/report/v4?s=pRCfTottQnnJ5rnYYqQ4IdxXVeC0ir4u0k9wsynkRSUAsKiexSQRFhw3FE%2BsFN0bdpprUyG1RNnO%2FT%2F2NPtMINfbM9sQ2Cc9sbqIleKQJm1MKnNnCKHqYmC%2BAHpC85xsQohY

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=11,cfOrigin;dur=794

alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: a08e84d47edcd64d-IAD
date: Tue, 09 Jun 2026 07:45:49 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=pRCfTottQnnJ5rnYYqQ4IdxXVeC0ir4u0k9wsynkRSUAsKiexSQRFhw3FE%2BsFN0bdpprUyG1RNnO%2FT%2F2NPtMINfbM9sQ2Cc9sbqIleKQJm1MKnNnCKHqYmC%2BAHpC85xsQohY"}]}
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=11,cfOrigin;dur=794

Recommendations

Enable compression (gzip/brotli) to improve performance