Open
Cached
·
just now
24
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding,Origin
accept-ranges: bytes connection: close vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding,Origin
Caching Headers
Age
55
Cache-Control
public, max-age=60, stale-while-revalidate=60
age: 55 cache-control: public, max-age=60, stale-while-revalidate=60
Content Headers
Content-Length
428629
Content-Type
text/html; charset=utf-8
content-length: 428629 content-type: text/html; charset=utf-8
Server Headers
X-Powered-By
Next.js
x-powered-by: Next.js
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Tue, 28 Apr 2026 16:01:26 GMT
Link
rel=preload
as=font
crossorigin
type=font/woff2
rel=preload
as=font
crossorigin
type=font/woff2
rel=preload
as=font
crossorigin
type=font/woff2
Via
1.1 a6be96637dfcb93ee417719bb21d57d0.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
X-Amz-Cf-Id
ucZPFWL8N0CYPfrw8zIwG0Zw4Ly6SZ1JCRjmtLmmYBI4YW7hqBTT2Q==
X-Amz-Cf-Pop
SEA900-P9
X-Amzn-Remapped-Connection
keep-alive
X-Amzn-Remapped-Date
Tue, 28 Apr 2026 16:00:30 GMT
X-Amzn-Requestid
92c9679c-8da7-42bf-a4b0-00336c3b803a
X-Amzn-Trace-Id
Root=1-69f0d99e-62aed1806dba35e8626aec6b;Parent=216e8ad70abc9adb;Sampled=0;Lineage=1:ca9b16fd:0
X-Cache
Miss from cloudfront, HIT, MISS
X-Cache-Hits
2, 0
X-Correlation-Id
ff51ec90-eead-472a-a495-9960265172a2
X-Served-By
cache-bfi-kbfi7400107-BFI, cache-pdk-kpdk2140055-PDK
X-Timer
S1777392086.137443,VS0,VE62
date: Tue, 28 Apr 2026 16:01:26 GMT link: <https://cf.nmws.nearmap.com/static/_next/static/media/baf189c215c76387-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://cf.nmws.nearmap.com/static/_next/static/media/bd5cb8d9c6fd6413-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://cf.nmws.nearmap.com/static/_next/static/media/f7e28de6d6bf52b7-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2" via: 1.1 a6be96637dfcb93ee417719bb21d57d0.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish x-amz-cf-id: ucZPFWL8N0CYPfrw8zIwG0Zw4Ly6SZ1JCRjmtLmmYBI4YW7hqBTT2Q== x-amz-cf-pop: SEA900-P9 x-amzn-remapped-connection: keep-alive x-amzn-remapped-date: Tue, 28 Apr 2026 16:00:30 GMT x-amzn-requestid: 92c9679c-8da7-42bf-a4b0-00336c3b803a x-amzn-trace-id: Root=1-69f0d99e-62aed1806dba35e8626aec6b;Parent=216e8ad70abc9adb;Sampled=0;Lineage=1:ca9b16fd:0 x-cache: Miss from cloudfront, HIT, MISS x-cache-hits: 2, 0 x-correlation-id: ff51ec90-eead-472a-a495-9960265172a2 x-served-by: cache-bfi-kbfi7400107-BFI, cache-pdk-kpdk2140055-PDK x-timer: S1777392086.137443,VS0,VE62
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology