| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Connection | keep-alive |
| X-Permitted-Cross-Domain-Policies | none |
| X-Azure-Ref | 20250407T232143Z-15ffd4d8554xtwmbhC1DUS08ns0000000ddg00000000e93v |
| X-Content-Type-Options | nosniff |
| X-Ms-Request-Id | 6c2b1168-501e-003c-3013-a87727000000 |
| X-Ms-Version | 2018-03-28 |
| Content-Type | text/html;; charset=utf-8 |
| Strict-Transport-Security | max-age=31536000; includeSubDomains |
| Referrer-Policy | no-referrer |
| X-Xss-Protection | 1; mode=block |
| Last-Modified | Mon, 07 Apr 2025 20:50:45 GMT |
| Etag | "0x8DD7615DE67C4B8-gzip" |
| Vary | Accept-Encoding |
| Date | Mon, 07 Apr 2025 23:21:43 GMT |
| Content-Security-Policy | default-src 'self' data: blob: https: boschtools.com *.boschtools.com *.mycliplister.com *.hotjar.com *.linkedin.com a19948120449.cdn.optimizely.com 10097804.fls.doubleclick.net adservice.google.com adservice.google.de ad.doubleclick.net errors.client.optimizely.com logx.optimizely.com px.ads.linkedin.com visitor-service-eu-central-1.tealiumiq.com; font-src 'self' data: gallery.sprinklr.com ka-p.fontawesome.com ; object-src data: 'self'; img-src https: data: blob: track.securedvisit.com track.sv.rkdms.com images.securedvisit.com scontent-iad3-2.cdninstagram.com scontent.cdninstagram.com thumb.sprinklr.com collect.tealiumiq.com gwmtracking.com pbs.twimg.com; style-src 'self' 'unsafe-inline' https: content.securedvisit.com 10097804.fls.doubleclick.net gallery.sprinklr.com; script-src https: data: blob: 'unsafe-inline' 'unsafe-eval' track.sv.rkdms.com content.securedvisit.com api.securedvisit.com *.googletagmanager.com *.google-analytics.com gallery.sprinklr.com bosch-tools-resultpage.com cvg-bosch.widget.custhelp.com s.webtrends.com tags.tiqcdn.com cdn.optimizely.com cdn.pricespider.com platform.twitter.com snap.licdn.com; connect-src 'self' https: data: blob: track.securedvisit.com *.hotjar.com wss://*.hotjar.com wss://*.botframework.com wss://botframework.com; frame-src 'self' https: data: api.securedvisit.com; Content-Security-Policy: frame-ancestors 'self' https: rvw-kittelberger.bosch-professional.com |
| Access-Control-Allow-Headers | content-type |
| Access-Control-Allow-Methods | GET, POST, OPTIONS |
| X-Cache | CONFIG_NOCACHE |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar