Open
Cached
·
just now
17
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Present
geolocation=(); midi=();notifications=();push=();sync-xhr=();accelerometer=(); gyroscope=(); magnetometer=(); payment=(); camera=(); microphone=();usb=(); xr=();speaker=(self);vibrate=();fullscreen=(self);
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
Accept-Encoding, Accept-Encoding
accept-ranges: bytes connection: close vary: Accept-Encoding, Accept-Encoding
Caching Headers
Age
4152
Cache-Control
s-maxage=2592000
age: 4152 cache-control: s-maxage=2592000
Content Headers
Content-Length
759002
Content-Type
text/html; charset=UTF-8
content-length: 759002 content-type: text/html; charset=UTF-8
Server Headers
Server
nginx
server: nginx
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Mon, 27 Apr 2026 14:04:19 GMT
Link
rel=https://api.w.org/
rel=alternate
title=JSON
type=application/json
rel=shortlink
X-Cache
HIT
date: Mon, 27 Apr 2026 14:04:19 GMT link: <https://blogvault.net/wp-json/>; rel="https://api.w.org/", <https://blogvault.net/wp-json/wp/v2/pages/6>; rel="alternate"; title="JSON"; type="application/json", <https://blogvault.net/>; rel=shortlink x-cache: HIT
Recommendations
Enable compression (gzip/brotli) to improve performance