HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
200
Total Requests
1
Total Time
643 ms
  • IP
    212.48.70.56
    View Map

  • Timing

    Wait

    1 ms

    DNS

    10 ms

    TCP

    84 ms

    Request

    1 ms

    First Byte

    457 ms

    Download

    1 ms

    Total

    643 ms

  • HTTP Headers

    Server

    nginx/1.27.4

    A name for the server.

    • Server

      nginx

      Description of the server software.

    • Version

      1.27.4

      Version number.

    Date

    Mon, 23 Jun 2025 23:17:34 GMT

    The date and time that the message was sent.

    Content-Type

    text/html; charset=utf-8

    The MIME type of this content.

    • Type

      text/html

    • Description

      HTML file

    • Charset

      utf-8

    Connection

    close

    Control options for the current connection and list of hop-by-hop response fields.

    close - The client or server would like to close the connection.

    X-Frame-Options

    SAMEORIGIN

    Clickjacking protection.

    SAMEORIGIN - No rendering if origin mismatch.

    X-Xss-Protection

    1; mode=block

    Cross-site scripting (XSS) filter.

    • 1

      Enable XSS filtering.

    • Mode

      Filtering mode.

      • block - Block page if XSS is detected.
    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    Etag

    W/"bbd77a9282edde595c5e83429144f310"

    An identifier for a specific version of a resource.

    • Validator

      weak

      A weak tag is easier to generate and prevents byte range caching.

    • Tag

      bbd77a9282edde595c5e83429144f310

    Cache-Control

    max-age=0, private, must-revalidate

    Inform all caching mechanisms from server to client whether they may cache this object.

    • Max-Age

      0

      The time a browser should remember a site can only be accessed with https (seconds).

    • private

      May only be stored by a browser cache.

    • must-revalidate

      Stale caches must not be used.

    Set-Cookie

    _McTool_session=Q3hxZFJUQm9lRlBEbWVXUHQ5dm50NjNOb2hyQWlhS1hsRkduTFdPV1A0ZjJGU3VXeXJyME5RSkVnMVJ4b1ZMUm1IR0ZWMEMrRy94eUpFNm4zcW5jZzlVeERrTUduU0l3bXJDQ3VmMHJNSHBsMUJPRWZzNXdIc3hXOFZCbjlDTWlqUE8vaXVPUUlhYnZuM2Zyd05DbWN6VGZHaFZQblJ1UHRhSitzUFRyNElzPS0tRHJnOUlzZURRdFQvVGszQy93UUpJdz09--d5ee96f13295ed86a0cf16defe6e0e0d6f9a36ef; path=/; HttpOnly

    A cookie sent from the server to be set on the client

    • _McTool_session

      Q3hxZFJUQm9lRlBEbWVXUHQ5dm50NjNOb2hyQWlhS1hsRkduTFdPV1A0ZjJGU3VXeXJyME5RSkVnMVJ4b1ZMUm1IR0ZWMEMrRy94eUpFNm4zcW5jZzlVeERrTUduU0l3bXJDQ3VmMHJNSHBsMUJPRWZzNXdIc3hXOFZCbjlDTWlqUE8vaXVPUUlhYnZuM2Zyd05DbWN6VGZHaFZQblJ1UHRhSitzUFRyNElzPS0tRHJnOUlzZURRdFQvVGszQy93UUpJdz09--d5ee96f13295ed86a0cf16defe6e0e0d6f9a36ef

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    X-Request-Id

    7b47ede1-8770-42eb-a174-4bbd17265d0a

    X-Runtime

    0.196861