Open
Cached
·
just now
15
Headers
Detected Technologies from Headers
AWS CloudFront
PayPal
Adobe Fonts (Typekit)
Amazon S3
Cloudflare
Active incidents
Cloudflare CDN
Facebook
Font Awesome
Forethought
Google Analytics
Google API JS Client
Google Conversion Tracking
Google DoubleClick
Google Maps
Google Search
Google Static File Front End
Google Tag Manager
LinkedIn
New Relic
Termly
Twitter
Vimeo
YouTube
Zendesk
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
connection: close
Caching Headers
Cache-Control
no-cache, no-store
Expires
-1
Pragma
no-cache
cache-control: no-cache, no-store expires: -1 pragma: no-cache
Content Headers
Content-Length
29335
Content-Type
text/html; charset=utf-8
content-length: 29335 content-type: text/html; charset=utf-8
Server Headers
No server headers found
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Mon, 06 Apr 2026 10:32:06 GMT
P3p
CP="CAO PSA OUR"
Reporting-Endpoints
wildapricot-csp-uel='https://csp.uel.wildapricot.com/report'
X-Backend-Server
lwf2wue1d-052b
X-Lb-Server
llblue1c-3a4b
X-Ua-Compatible
IE=10
date: Mon, 06 Apr 2026 10:32:06 GMT p3p: CP="CAO PSA OUR" reporting-endpoints: wildapricot-csp-uel='https://csp.uel.wildapricot.com/report' x-backend-server: lwf2wue1d-052b x-lb-server: llblue1c-3a4b x-ua-compatible: IE=10
Recommendations
Enable compression (gzip/brotli) to improve performance