HTTP Headers: bfi.org.uk
Security score: 40/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ❌ Missing |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Accept-Ranges Cache-Control Connection Content-Encoding Content-Length Content-Type Cross-Origin-Opener-Policy Date Etag Function-Execution-Id Origin-Agent-Cluster Referrer-Policy Server Strict-Transport-Security Vary X-Cache X-Cache-Hits X-Cloud-Trace-Context X-Content-Type-Options X-Country-Code X-Dns-Prefetch-Control X-Download-Options X-Frame-Options X-Orig-Accept-Language X-Permitted-Cross-Domain-Policies X-Served-By X-Timer X-Xss-Protection alt-svc
🔧 More Tools for Bfi