Cloudflare Certificate Transparency
Download List of All Websites using Cloudflare Certificate Transparency
The Expect-CT header allows sites to opt in to reporting and/or enforcement of Certificate Transparency requirements, which prevents the use of misissued certificates for that site from going unnoticed.
Tags:
Meta Description
Download List of All Websites using Meta Description
A meta description is a 160-character snippet, a meta tag in HTML, that summarizes a page`s content. this website is having meta description of the following : Sage bietet die idealen Software-Lösungen für Gründer, den Mittelstand, kleine und mittlere Unternehmen, sowie Handwerksbetriebe. Jetzt mehr herausfinden!
X-Frame-Options Header
Download List of All Websites using X-Frame-Options Header
The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.
Pragma Header - backwards compatibility with HTTP/1.0
Download List of All Websites using Pragma Header - backwards compatibility with HTTP/1.0
The Pragma HTTP/1.0 general header is an implementation-specific header that may have various effects along the request-response chain. It is used for backwards compatibility with HTTP/1.0 caches where the Cache-Control HTTP/1.1 header is not yet present.
Tags:
Private Cache-Control Header
Download List of All Websites using Private Cache-Control Header
The Cache-Control general-header field is used to specify directives for caching mechanisms in both requests and responses. Caching directives are unidirectional, meaning that a given directive in a request is not implying that the same directive is to be given in the response.
Tags:
No Cache Content
Download List of All Websites using No Cache Content
Forces caches to submit the request to the origin server for validation before releasing a cached copy.
Tags:
NO Store HTTP Cache-Control
Download List of All Websites using NO Store HTTP Cache-Control
The cache should not store anything about the client request or server response.
Tags:
Must Revalidate HTTP Cache-Control
Download List of All Websites using Must Revalidate HTTP Cache-Control
Indicates that once a resource has become stale (e.g. max-age has expired), a cache must not use the response to satisfy subsequent requests for this resource without successful validation on the origin server.
Tags:
Cache-Control Header Max-Age
Download List of All Websites using Cache-Control Header Max-Age
Specifies the maximum amount of time a resource will be considered fresh. Contrary to Expires, this directive is relative to the time of the request. this website is having max-age=0 secs.
Tags:
Precheck Cache-Control Header
Download List of All Websites using Precheck Cache-Control Header
this website is using precheck Cache-Control Header.
Tags:
Post Cache-Control Header
Download List of All Websites using Post Cache-Control Header
this website is using post-heck Cache-Control Header.
Tags:
HSTS - Browser HTTPS Only for domain and subdomains
Download List of All Websites using HSTS - Browser HTTPS Only for domain and subdomains
The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) lets a web site tell browsers that it should only be accessed using HTTPS, instead of using HTTP for domain and subdomains browsers will never connect to your domain using an insecure connection. While the service is hosted by Googlefor 31536000 seconds
HSTS - Browser HTTPS Only for domain and subdomains
Download List of All Websites using HSTS - Browser HTTPS Only for domain and subdomains
The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) lets a web site tell browsers that it should only be accessed using HTTPS, instead of using HTTP for domain and subdomains browsers will never connect to your domain using an insecure connection. While the service is hosted by Googlefor 15552000 seconds
Vary Header Accept-Encoding
Download List of All Websites using Vary Header Accept-Encoding
The Accept-Encoding request HTTP header advertises which content encoding, usually a compression algorithm, the client is able to understand. Using content negotiation, the server selects one of the proposals, uses it and informs the client of its choice with the Content-Encoding response header.
Tags:
Block Content Sniffing
Download List of All Websites using Block Content Sniffing
The X-Content-Type-Options response HTTP header is a marker used by the server to indicate that the MIME types advertised in the Content-Type headers should not be changed and be followed. This allows to opt-out of MIME type sniffing, or, in other words, it is a way to say that the webmasters knew what they were doing.
Tags:
XSS-Protection Header
Download List of All Websites using XSS-Protection Header
The HTTP X-XSS-Protection response header is a feature of Internet Explorer, Chrome and Safari that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks. Although these protections are largely unnecessary in modern browsers when sites implement a strong Content-Security-Policy that disables the use of inline JavaScript (`unsafe-inline`), they can still provide protections for users of older web browsers that don`t yet support CSP.
Tags: