Open
Cached
·
just now
17
Headers
Detected Technologies from Headers
Gravatar
Ahrefs
Auth0
ClearBit
Crazy Egg
GitHub
Google AdSense
Google Analytics
Google DoubleClick
Google Fonts
Google Search
Google Static File Front End
Google Tag Manager
HubSpot
Active incidents
HubSpot Analytics
Active incidents
HubSpot Forms
Active incidents
Inkeep
Lever
LinkedIn
Next.js
Nginx
Spotify
Vercel
Vimeo
YouTube
ZoomInfo
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Vary
Accept-Encoding, Accept-Encoding
connection: close vary: Accept-Encoding, Accept-Encoding
Caching Headers
Cache-Control
no-cache
Etag
"170693jpb3h27sf"
Expires
Fri, 01 May 2026 18:07:47 GMT
cache-control: no-cache etag: "170693jpb3h27sf" expires: Fri, 01 May 2026 18:07:47 GMT
Content Headers
Content-Length
103455
Content-Type
text/html; charset=utf-8
content-length: 103455 content-type: text/html; charset=utf-8
Server Headers
Server
nginx
X-Powered-By
Next.js
server: nginx x-powered-by: Next.js
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Fri, 01 May 2026 18:07:48 GMT
X-Country-Code
US
X-Nextjs-Cache
HIT
X-Nonce
RT9uPqateP4=
date: Fri, 01 May 2026 18:07:48 GMT x-country-code: US x-nextjs-cache: HIT x-nonce: RT9uPqateP4=
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology