DNS Gurus
Cached · just now
21 Headers

Detected Technologies from Headers

See all in URL Inspect 11
Ahrefs logo Ahrefs Apache logo Apache Microsoft Advertising logo Microsoft Advertising Craft CMS logo Craft CMS Facebook logo Facebook Google Conversion Tracking logo Google Conversion Tracking Google DoubleClick logo Google DoubleClick Google Search logo Google Search Google Tag Manager logo Google Tag Manager Intercom logo Intercom Reddit logo Reddit

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Google Tag Manager logo
Basic
object-src; script-src; connect-src; +3 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
camera=(), microphone=(), geolocation=(self); +1 more
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'

Performance Headers

Connection
Performance
Upgrade, close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

Cache-Control
Caching
no-store, no-cache, must-revalidate
Expires
Caching
Thu, 19 Nov 1981 08:52:00 GMT
Pragma
Caching
no-cache

Content Headers

Content-Type
Content
text/html; charset=UTF-8

Server Headers

Server
Apache logo
Server
Apache
X-Powered-By
Craft CMS logo
Server
Craft CMS

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Date
Other
Mon, 04 May 2026 03:33:23 GMT
Link
Other
Upgrade
Other
h2,h2c
X-Backend-Delay
Other
0.529
X-Resp
Other
934

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology