HTTP Headers: forbes.com
Security score: 60/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ✅ Present |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Accept-Ranges Access-Control-Allow-Credentials Age Connection Content-Length Content-Security-Policy Date Permissions-Policy Referrer-Policy Strict-Transport-Security Vary Via X-Cache X-Cache-Hits X-City-Code X-Country-Code X-Fastly-Backend X-Fastly-X-is-CN X-Fastly-X-is-US-DPA X-FastlyTTL X-Frame-Options X-Postal-Code X-Region X-Served-By X-Timer alt-svc backend cache-control content-encoding content-type server state x-backend x-cicero-cache x-device x-envoy-upstream-service-time x-malcolm x-yourttl
🔧 More Tools for Forbes