HTTP Headers: grader.com
Security score: 40/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ❌ Missing |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Access-Control-Allow-Credentials Age CF-Cache-Status CF-RAY Cache-Control Connection Content-Encoding Content-Security-Policy-Report-Only Content-Type Date ETag Last-Modified Server Vary Via X-Amz-Cf-Id X-Amz-Cf-Pop X-Cache X-Content-Type-Options X-HS-Cache-Status X-HS-Target-Asset cache-tag x-amz-meta-ao x-amz-replication-status x-amz-server-side-encryption x-amz-version-id x-envoy-upstream-service-time x-evy-trace-listener x-evy-trace-route-configuration x-evy-trace-route-service-name x-evy-trace-served-by-pod x-evy-trace-virtual-host x-hubspot-correlation-id x-request-id
🔧 More Tools for Grader