HTTP Headers Analysis for https://www.rescuetime.com

Detected Technologies from Headers

See all in URL Inspect 40

PayPal

Gravatar

AWS CloudFront

Google Tag Manager

Spotify

Google Sign-In

Braintree

Google Hosted Libraries

UserSnap

Statuspage

Zapier

Google DoubleClick

Google Analytics

Google Conversion Tracking

Pusher

Sprig

Google Static File Front End

Help Scout

RawGit

Google Fonts

Wistia

Twitter

Slack

Google Search

Nginx

Apple ID

Facebook

Amazon S3

GitHub Active incidents

Customer.io

Asana

Visual Website Optimizer

Vimeo

ipify

Product Hunt

YouTube

Font Awesome

Sentry

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=631138519, max-age=31536000

Content-Security-Policy

Basic

default-src; base-uri; child-src; +14 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin-when-cross-origin, strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

Close

Vary

Performance

Accept-Encoding

connection: Close
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

no-store

Etag

Caching

W/"50019c8cecdf91ff862e1214555eaafb"

Expires

Caching

Fri, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

cache-control: no-store
etag: W/"50019c8cecdf91ff862e1214555eaafb"
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache

Content Headers

Content-Length

Content

100916

Content-Type

Content

text/html; charset=utf-8

content-length: 100916
content-type: text/html; charset=utf-8

Server Headers

Server

nginx

X-Runtime

Server

0.025364

server: nginx
x-runtime: 0.025364

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: ahoy_visitor=e8c8a2b2-5d99-46ba-be69-b183f50742d6; path=/; expires=Sat, 29 Apr 2028 09:20:45 GMT; samesite=lax; secure; HttpOnly
ahoy_visit=98ac3afd-3db1-480e-a46a-dd1ad6dee873; path=/; expires=Wed, 29 Apr 2026 13:20:45 GMT; samesite=lax; secure; HttpOnly
first_visit=2026-04-29+02%3A20%3A45+-0700; path=/; samesite=lax; secure; HttpOnly
_rescuetime_session_p_2=c78302027f1f8184e5cbc7643ee7b02a; path=/; expires=Fri, 29 May 2026 09:20:45 GMT; secure; httponly; samesite=lax

Other Headers

Date

Other

Wed, 29 Apr 2026 09:20:45 GMT

Link

Other

URL https://assets.rescuetime.com/assets/marketing-9b4b4a852961b4d9bd8bc6a08624519cbbf6b445e5679b9cfdfc35bc2d1d20ce.css

rel=preload as=style nopush

URL https://assets.rescuetime.com/assets/marketing-562413b6b51dc1caf4cdb2ed2fcca30c3b71a42470c8b2a5ff7b7ed19f70c1a6.js

rel=preload as=script nopush

URL https://assets.rescuetime.com/assets/se-v2-a056010f87ca672f0a909ca43e75de11707f4008385d97bfb2e196a5cdbd224f.js

rel=preload as=script nopush

URL https://assets.rescuetime.com/assets/statuspage-06cd6e57100e9031845821ddfa456a51ec6da863a5ea2db3883d2f196da3d5c4.css

rel=preload as=style nopush

X-Download-Options

Other

noopen

X-Permitted-Cross-Domain-Policies

Other

none

X-Request-Id

Other

d238b840-0f7a-4c68-a279-e4f8812d7dee

X-Rescuetime-Release-Version

Other

427bad401b0cde5a88e83d0712d3795986e67ac2

date: Wed, 29 Apr 2026 09:20:45 GMT
link: <https://assets.rescuetime.com/assets/marketing-9b4b4a852961b4d9bd8bc6a08624519cbbf6b445e5679b9cfdfc35bc2d1d20ce.css>; rel=preload; as=style; nopush,<https://assets.rescuetime.com/assets/marketing-562413b6b51dc1caf4cdb2ed2fcca30c3b71a42470c8b2a5ff7b7ed19f70c1a6.js>; rel=preload; as=script; nopush,<https://assets.rescuetime.com/assets/se-v2-a056010f87ca672f0a909ca43e75de11707f4008385d97bfb2e196a5cdbd224f.js>; rel=preload; as=script; nopush,<https://assets.rescuetime.com/assets/statuspage-06cd6e57100e9031845821ddfa456a51ec6da863a5ea2db3883d2f196da3d5c4.css>; rel=preload; as=style; nopush
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: d238b840-0f7a-4c68-a279-e4f8812d7dee
x-rescuetime-release-version: 427bad401b0cde5a88e83d0712d3795986e67ac2

Recommendations

Enable compression (gzip/brotli) to improve performance