HSTS - Browser HTTPS Only for domain and subdomains

Download List of All Websites using HSTS - Browser HTTPS Only for domain and subdomains

   The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) lets a web site tell browsers that it should only be accessed using HTTPS, instead of using HTTP for domain and subdomainsfor 31536000 seconds

X-Frame-Options Header

Download List of All Websites using X-Frame-Options Header

   The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.

Vary Header Accept-Encoding

Download List of All Websites using Vary Header Accept-Encoding

   The Accept-Encoding request HTTP header advertises which content encoding, usually a compression algorithm, the client is able to understand. Using content negotiation, the server selects one of the proposals, uses it and informs the client of its choice with the Content-Encoding response header.

Block Content Sniffing

Download List of All Websites using Block Content Sniffing

   The X-Content-Type-Options response HTTP header is a marker used by the server to indicate that the MIME types advertised in the Content-Type headers should not be changed and be followed. This allows to opt-out of MIME type sniffing, or, in other words, it is a way to say that the webmasters knew what they were doing.

XSS-Protection Header

Download List of All Websites using XSS-Protection Header

   The HTTP X-XSS-Protection response header is a feature of Internet Explorer, Chrome and Safari that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks. Although these protections are largely unnecessary in modern browsers when sites implement a strong Content-Security-Policy that disables the use of inline JavaScript (`unsafe-inline`), they can still provide protections for users of older web browsers that don`t yet support CSP.

No Cache Content

Download List of All Websites using No Cache Content

   Forces caches to submit the request to the origin server for validation before releasing a cached copy.

SPF

Download List of All Websites using SPF

   The Sender Policy Framework (SPF) is an email-authentication technique which is used to prevent spammers from sending messages on behalf of your domain. With SPF an organisation can publish authorized mail servers.

Character Encoding :utf-8

Download List of All Websites using Character Encoding :utf-8

   This website is using utf-8 character encoding in HTML , character encoding is used to represent a repertoire of characters by some kind of encoding system.

Gzip Content-Encoding

Download List of All Websites using Gzip Content-Encoding

   The Content-Encoding entity header is used to compress the media-type. When present, its value indicates which encodings were applied to the entity-body. It lets the client know how to decode in order to obtain the media-type referenced by the Content-Type header.

JAVA

Download List of All Websites using JAVA

   Java is a general-purpose programming language that is class-based, object-oriented, and designed to have as few implementation dependencies as possible.

English United State - Language

Download List of All Websites using English United State - Language

   this website is using English as a language parameter

English - Language

Download List of All Websites using English - Language

   this website is using English as a language parameter