DNS Gurus
Cached · just now
16 Headers

Detected Technologies from Headers

See all in URL Inspect 47
Gravatar logo Gravatar YouTube logo YouTube Google AdSense logo Google AdSense Dreamdata logo Dreamdata Google Tag Manager logo Google Tag Manager Bing logo Bing G2 logo G2 AppNexus (Xandr) logo AppNexus (Xandr) Apache logo Apache HubSpot Forms logo HubSpot Forms Cookiebot logo Cookiebot Capterra logo Capterra Pendo logo Pendo Google DoubleClick logo Google DoubleClick Google Analytics logo Google Analytics ClickCease logo ClickCease Microsoft Advertising logo Microsoft Advertising Yoast logo Yoast 6sense logo 6sense Typeform logo Typeform Google Cloud Storage logo Google Cloud Storage Google Static File Front End logo Google Static File Front End Google API JS Client logo Google API JS Client Google Fonts logo Google Fonts Hotjar logo Hotjar LinkedIn logo LinkedIn HubSpot CMS logo HubSpot CMS ZoomInfo logo ZoomInfo HubSpot Analytics logo HubSpot Analytics Google Search logo Google Search Facebook logo Facebook Eventbrite logo Eventbrite Amazon S3 logo Amazon S3 OneTrust logo OneTrust AWS logo AWS jQuery logo jQuery Taboola logo Taboola Vimeo logo Vimeo Convert logo Convert HubSpot logo HubSpot Quora logo Quora Microsoft Clarity logo Microsoft Clarity Font Awesome logo Font Awesome HubSpot Live Chat logo HubSpot Live Chat jsDelivr logo jsDelivr Google Cloud logo Google Cloud Microsoft Azure logo Microsoft Azure

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
YouTube logo
Basic
base-uri; default-src; script-src; +10 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
Upgrade, close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

Cache-Control
Caching
max-age=3600
Expires
Caching
Thu, 07 May 2026 23:30:49 GMT

Content Headers

Content-Type
Content
text/html; charset=UTF-8

Server Headers

Server
Apache logo
Server
Apache

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date
Other
Thu, 07 May 2026 22:30:49 GMT
Report-To
Other
Group csp-endpoint max-age: 18w
Endpoint 1 https://xtm.cloud/wp-json/xtm-csp/v1/report
Upgrade
Other
h2

Recommendations

Enable compression (gzip/brotli) to improve performance