HTTP Headers report for prevention.com

Header Name	Header Data
HTTP status code	200
Connection	keep-alive
X-Content-Type-Options	nosniff
X-Xss-Protection	1; mode=block
Server-Timing	time-start-msec;dur=1744113914093,time-elapsed;dur=2,fastly-pop;desc=AMS,hit-state;desc=HIT-STALE-CLUSTER
Strict-Transport-Security	max-age=31557600; includeSubDomains
Content-Type	text/html; charset=utf-8
Etag	"mlkhr9mkk99fbv"
Referrer-Policy	no-referrer-when-downgrade
Accept-Ranges	bytes
Expires	Tue, 08 Apr 2025 11:53:58 GMT
X-Robots-Tag	all
X-Cache	MISS, HIT
X-Country	NL
Cache-Control	max-age=0, must-revalidate, no-store, private
Content-Security-Policy	upgrade-insecure-requests; default-src https: data: 'unsafe-inline' 'unsafe-eval' https: https://accounts.google.com/gsi/; script-src data: 'unsafe-inline' 'unsafe-eval' https: blob: https://accounts.google.com/gsi/client; style-src data: 'unsafe-inline' https: https://accounts.google.com/gsi/style; img-src data: https: blob:; font-src data: https:; connect-src https: wss: blob: https://accounts.google.com/gsi/; media-src data: https: blob:; object-src https:; child-src https: data: blob:; form-action https:; frame-ancestors 'self';
Link	<https://hips.hearstapps.com>; rel=preconnect,<https://cdn.cookielaw.org>; rel=preconnect
Age	675
Date	Tue, 08 Apr 2025 12:05:14 GMT
Set-Cookie	mosb=; expires=Mon, 08 Apr 2024 12:05:14 GMT; secure; path=/;
Alt-Svc	h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar