HSTS - Browser HTTPS Only
Download List of All Websites using HSTS - Browser HTTPS Only
The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) lets a web site tell browsers that it should only be accessed using HTTPS, instead of using HTTP for 31536000 seconds
Meta Description
Download List of All Websites using Meta Description
A meta description is a 160-character snippet, a meta tag in HTML, that summarizes a page`s content. this website is having meta description of the following : Vous réalisez des travaux de rénovation et vous souhaitez faire des économies d’énergie ? Simulez dès maintenant le montant de votre Prime Eco Energie Auchan !
X-Frame-Options Header
Download List of All Websites using X-Frame-Options Header
The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.
Meta keywords
Download List of All Websites using Meta keywords
Meta keywords are types of meta tags in the HTML source code of a webpage. They describe the content of a website shortly and concisely,this website is using the following keywords: Diagnostic énergétique, DPE, performance énergétique, travaux de rénovation, Economies d'énergie
Block Content Sniffing
Download List of All Websites using Block Content Sniffing
The X-Content-Type-Options response HTTP header is a marker used by the server to indicate that the MIME types advertised in the Content-Type headers should not be changed and be followed. This allows to opt-out of MIME type sniffing, or, in other words, it is a way to say that the webmasters knew what they were doing.
Tags:
Vary Header check for cookies
Download List of All Websites using Vary Header check for cookies
The Vary HTTP response header determines how to match future request headers to decide whether a cached response can be used rather than requesting a fresh one from the origin server. It is used by the server to indicate which headers it used when selecting a representation of a resource in a content negotiation algorithm.
Tags:
Vary Header Accept-Encoding
Download List of All Websites using Vary Header Accept-Encoding
The Accept-Encoding request HTTP header advertises which content encoding, usually a compression algorithm, the client is able to understand. Using content negotiation, the server selects one of the proposals, uses it and informs the client of its choice with the Content-Encoding response header.
Tags:
XSS-Protection Header
Download List of All Websites using XSS-Protection Header
The HTTP X-XSS-Protection response header is a feature of Internet Explorer, Chrome and Safari that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks. Although these protections are largely unnecessary in modern browsers when sites implement a strong Content-Security-Policy that disables the use of inline JavaScript (`unsafe-inline`), they can still provide protections for users of older web browsers that don`t yet support CSP.
Tags: