HTTP Headers Analysis for https://wisesystems.com

Detected Technologies from Headers

See all in URL Inspect 18

Cloudflare CDN

Facebook

Google Analytics

Google DoubleClick

Google Optimize

Google Search

Google Static File Front End

Google Tag Manager

Hotjar

HubSpot

HubSpot Forms

HubSpot Live Chat

Salesforce Cloud

Wistia

WP Engine

Yoast

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Basic

script-src; frame-ancestors; script-src-elem; +1 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin

Permissions-Policy

Present

accelerometer=(), ambient-light-sensor=(), autoplay=(self); +39 more

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding, Accept-Encoding, Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding

Caching Headers

Cache-Control

Caching

max-age=0, must-revalidate, private

cache-control: max-age=0, must-revalidate, private

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

X-Powered-By

Server

WP Engine

server: cloudflare
x-powered-by: WP Engine

CORS Headers

Access-Control-Allow-Origin

Cors

wisesystemsorg.my.salesforce.com, webto.salesforce.com

access-control-allow-origin: wisesystemsorg.my.salesforce.com, webto.salesforce.com

Cookies Headers

Set-Cookie

Cookies

set-cookie: wordpress_google_apps_login=ad9f8085485d8dd5a99ccf56982343cc; path=/; secure; HttpOnly
__cf_bm=TCh_1dGMJrBRgT_UAcX3LNzB4chnYV_nXC1kZvSTckc-1778201689.9278505-1.0.1.1-F.oxLhkRMJ7Dc6f_6B7ctcOtuVuCuur0z7_TQUmdfoktTreFHDJE0KEQGwX.wPAqvq45gBorNmenRPGBXTEo4G66A9iA1TjdXOjWMkt3E9MnCQGELh2JkA.1tK3OHm1C; HttpOnly; Secure; Path=/; Domain=www.wisesystems.com; Expires=Fri, 08 May 2026 01:24:51 GMT

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f847ed20dabe5ff-IAD

Date

Other

Fri, 08 May 2026 00:54:51 GMT

Link

Other

URL https://www.wisesystems.com/wp-json/

rel=https://api.w.org/

URL https://www.wisesystems.com/wp-json/wp/v2/pages/2

rel=alternate title=JSON type=application/json

URL https://www.wisesystems.com/

rel=shortlink

X-Cache

Other

MISS

X-Cache-Group

Other

normal

X-Cacheable

Other

NO:Set Known Cookie

alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 9f847ed20dabe5ff-IAD
date: Fri, 08 May 2026 00:54:51 GMT
link: <https://www.wisesystems.com/wp-json/>; rel="https://api.w.org/", <https://www.wisesystems.com/wp-json/wp/v2/pages/2>; rel="alternate"; title="JSON"; type="application/json", <https://www.wisesystems.com/>; rel=shortlink
x-cache: MISS
x-cache-group: normal
x-cacheable: NO:Set Known Cookie

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology