HTTP Headers: chase.com
Security score: 60/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ✅ Present |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Accept-CH Accept-Ranges Access-Control-Allow-Origin Cache-Control Connection Content-Encoding Content-Length Content-Security-Policy Content-Type Date ETag Last-Modified Permissions-Policy Server-Timing Strict-Transport-Security Vary X-Content-Security-Policy X-Frame-Options X-OneAgent-JS-Injection X-ruxit-JS-Agent x-amzn-trace-id x-xss-protection
🔧 More Tools for Chase