| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Strict-Transport-Security | max-age=63072000 |
| Via | 1.1 lon1-bit21003 |
| Set-Cookie | bid_islptxjukqclyhbq884idzqzaqo3rhv7=762966cb-81da-4949-a49f-647a29178c40; Path=/; Expires=Sun, 19 Apr 2026 14:10:07 GMT; Max-Age=31536000; Secure; SameSite=None |
| X-Vercel-Cache | STALE |
| Content-Security-Policy | default-src 'self' 'unsafe-inline' 'unsafe-eval' *.sitecorecloud.io media.isc2.org sc-dev.isc2.org sc-qa.isc2.org sc-uat.isc2.org xmc-dev.isc2.org xmc-qa.isc2.org xmc-uat.isc2.org mydev.isc2.org myqa.isc2.org my.isc2.org apim-isc2-ct-dev-01.azure-api.net apim-isc2-ct-qa-01.azure-api.net apim-isc2-ct-uat-01.azure-api.net apim-isc2-ct-prod-01.azure-api.net apps.mypurecloud.com *.mypurecloud.com *.usw2.pure.cloud sandbox.paypal.com *.paypal.com *.braintreegateway.com *.braintree-api.com fonts.googleapis.com maps.googleapis.com fonts.gstatic.com www.gstatic.com csi.gstatic.com maps.gstatic.com cdnjs.cloudflare.com code.jquery.com maxcdn.bootstrapcdn.com *.googletagmanager.com analytics.google.com *.analytics.google.com *.google.com *.vo.msecnd.net www.google-analytics.com www.googleadservices.com *.googleadservices.com *.googlesyndication.com dnn506yrbagrg.cloudfront.net sjs.bizographics.com www.googletagservices.com *.services.visualstudio.com adservice.google.com tpc.googlesyndication.com pagead2.googlesyndication.com cdn.ampproject.org www.brighttalk.com *.g.doubleclick.net *.ads.linkedin.com *.linkedin.com *.liveperson.net *.lpsnmedia.net cdn.snapapp.com scdn.snapapp.com *.snapapp.com use.fontawesome.com quizlet.com tagmanager.google.com static.ads-twitter.com analytics.twitter.com px.spiceworks.com ajax.googleapis.com cdn.jsdelivr.net snap.licdn.com *.safeframe.googlesyndication.com *.quantserve.com rules.quantcount.com connect.facebook.net *.uxtweak.com adservice.google.co.in *.microsoft.com *.bing.com cpe.isc2.org chapters.isc2.org checkout.isc2.org chat-widget.imi.chat *.imi.chat hit.uptrendsdata.com *.zoominfo.com cdn.linkedin.oribi.io *.mountain.com *.go-mpulse.net *.akstat.io *.azureedge.net data: filesystem: *.cloudfront.net *.sitecorecloud.io *.youtube.com cdn.cookielaw.org *.imi.chat *.onetrust.com unpkg.com *.amazonaws.com *.vercel.app *.algolia.net *.algolia.io *.algolianet.com salesforcesitedev.z13.web.core.windows.net *.google-analytics.com *.analytics.google.com analytics.google.com tags.srv.stackadapt.com *.redditstatic.com *.doubleclick.net *.facebook.net *.reddit.com *.facebook.com community.isc2.org nominatim.openstreetmap.org linkedin.com redditstatic.com bing.com brighttalk.com google.com google.ca google.co.uk stackadapt.com tags.srv.stackadapt.com googleadservices.com googletagservices.com gstatic.com *.stripe.com; frame-ancestors 'self' *.sitecorecloud.io *.isc2.org; frame-src 'self' 'unsafe-inline' *.stripe.com *.paypal.com *.sitecorecloud.io *.mypurecloud.com *.usw2.pure.cloud *.imi.chat quizlet.com *.doubleclick.net *.googletagmanager.com www.brighttalk.com *.youtube.com *.isc2.org; connect-src 'self' cdn.cookielaw.org *.algolia.net *.algolia.io *.stripe.com *.paypal.com *.braintreegateway.com *.braintree-api.com *.reddit.com *.redditstatic.com tags.srv.stackadapt.com *.ads.linkedin.com *.doubleclick.net *.algolianet.com nominatim.openstreetmap.org *.googletagmanager.com *.googleadservices.com *.googletagservices.com analytics.google.com *.analytics.google.com *.google-analytics.com *.googleadservices.com *.googlesyndication.com wss://*.googlesyndication.com wss://*.google-analytics.com brighttalk.com adservice.google.com *.google.com *.google.ca *.onetrust.com *.bing.com *.google.ca *.onetrust.com *.bing.com *.imi.chat *.usw2.pure.cloud *.mypurecloud.com wss://webmessaging.usw2.pure.cloud *.sitecorecloud.io; |
| Etag | W/"13vkyo7q6cu5q1l" |
| X-Frame-Options | SAMEORIGIN |
| X-Matched-Path | /en/[[...path]] |
| Content-Type | text/html; charset=utf-8 |
| Cache-Control | public, max-age=0, must-revalidate |
| Date | Sat, 19 Apr 2025 14:09:50 GMT |
| X-Vercel-Id | lhr1::iad1::72v5b-1745071807119-23a466b97bdb |
| Age | 7 |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar