HTTP Headers: stroke.org.uk
Security score: 40/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ❌ Missing |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Cache-Control Connection Content-Encoding Content-Language Content-Type Date Expires Server Vary Via X-Amz-Cf-Id X-Amz-Cf-Pop X-Cache X-Content-Type-Options X-Drupal-Cache X-Drupal-Dynamic-Cache X-Frame-Options X-Generator
🔧 More Tools for Stroke