HTTP Headers: substack.com
Security score: 60/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ✅ Present |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
CF-Cache-Status CF-Ray Cache-Control Connection Content-Encoding Content-Type Date ETag Server Set-Cookie Strict-Transport-Security Vary alt-svc x-cluster x-deploy x-frame-options x-powered-by x-served-by
🔧 More Tools for Substack