HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 452 ms
https://surveytricks.com/- Status
- 200
- Message
- OK
- Time
- 452 ms
- IP
- 104.21.53.199
Timing
Wait
0 ms
DNS
10 ms
TCP
4 ms
Request
0 ms
First Byte
427 ms
Download
0 ms
Total
452 ms
HTTP Headers
- Date
Thu, 31 Jul 2025 00:14:12 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=utf-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
utf-8
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- Report-To
{"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=lSmPFdOz1p3IZJKWQQPF9Pw83P29h4zG4RoxubqQ2vB8fJzJ6i4pT%2BCEaSk%2BacMzJlv2iWDZaI27BZzVht1BghuWmNPmp4b50mxVkcsUms4%3D"}]}
Report to.
Group
cf-nel
Max_age
604800
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=lSmPFdOz1p3IZJKWQQPF9Pw83P29h4zG4RoxubqQ2vB8fJzJ6i4pT%2BCEaSk%2BacMzJlv2iWDZaI27BZzVht1BghuWmNPmp4b50mxVkcsUms4%3D"}
- Cache-Control
private, s-maxage=0
Inform all caching mechanisms from server to client whether they may cache this object.
private
May only be stored by a browser cache.
S-Maxage
0
Override max-age for shared caches, ignored by private caches.
- Nel
{"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Configure network request logging.
Report_to
cf-nel
Success_fraction
0Max_age
604800
- Vary
Accept-Encoding
Indicates that different content may be provided to different clients, depending on the vary header.
Headers
- Accept-Encoding
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Strict-Transport-Security
max-age=15552001; includeSubDomains
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
15552001 (180 days 1 second)
The time a browser should remember a site can only be accessed with https (seconds).
includesubdomains
max-age applies to subdomains as well.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Xss-Protection
1; mode=block
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Cache-Status
DYNAMIC
Encoded information about your request from Cloudflare.
DYNAMIC - This is not cached by default.
- Set-Cookie
AWSALBTG=1T2oUFHkzP9v9XnltWZ71J2Ne0pf02gYXModF6CY3g48XYmAnuIXnWpCnRpD3AVx4ncWuB5q2UWhxthXXshOb05LwDzhiM0iK8jw8QZ7I13Na+5IxfLT8by000SD/r3wge+enDPJ649nKGCPzXUxFEh1WuWspkqR/MS9nojYxPc/5Gg2yGc=; Path=/; Expires=Thu, 07 Aug 2025 00:14:12 GMT
A cookie sent from the server to be set on the client
AWSALBTG
1T2oUFHkzP9v9XnltWZ71J2Ne0pf02gYXModF6CY3g48XYmAnuIXnWpCnRpD3AVx4ncWuB5q2UWhxthXXshOb05LwDzhiM0iK8jw8QZ7I13Na+5IxfLT8by000SD/r3wge+enDPJ649nKGCPzXUxFEh1WuWspkqR/MS9nojYxPc/5Gg2yGc
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Thu, 07 Aug 2025 00:14:12 GMT
When the cookie should expire.
- Set-Cookie
AWSALBTGCORS=1T2oUFHkzP9v9XnltWZ71J2Ne0pf02gYXModF6CY3g48XYmAnuIXnWpCnRpD3AVx4ncWuB5q2UWhxthXXshOb05LwDzhiM0iK8jw8QZ7I13Na+5IxfLT8by000SD/r3wge+enDPJ649nKGCPzXUxFEh1WuWspkqR/MS9nojYxPc/5Gg2yGc=; SameSite=None; Secure; Path=/; Expires=Thu, 07 Aug 2025 00:14:12 GMT
A cookie sent from the server to be set on the client
AWSALBTGCORS
1T2oUFHkzP9v9XnltWZ71J2Ne0pf02gYXModF6CY3g48XYmAnuIXnWpCnRpD3AVx4ncWuB5q2UWhxthXXshOb05LwDzhiM0iK8jw8QZ7I13Na+5IxfLT8by000SD/r3wge+enDPJ649nKGCPzXUxFEh1WuWspkqR/MS9nojYxPc/5Gg2yGc
Cookie name and value.
Samesite
None
Cookie sent with both cross-site and same-site requests..
Secure
The cookie is only sent when requesting from a https domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Thu, 07 Aug 2025 00:14:12 GMT
When the cookie should expire.
- Set-Cookie
AWSALB=QXv+M9saxxKO1uZ+T3BhSjDl5Y5At75hfIHYC0wKrtLF5kNkrDAnaXIsmeG1F0uz0yxc/hXfhavA3TyC31Ji2/Qs1Pwpfwp1XHhIfHK2vSRopZjHfyuF3iENenvL; Path=/; Expires=Thu, 07 Aug 2025 00:14:12 GMT
A cookie sent from the server to be set on the client
AWSALB
QXv+M9saxxKO1uZ+T3BhSjDl5Y5At75hfIHYC0wKrtLF5kNkrDAnaXIsmeG1F0uz0yxc/hXfhavA3TyC31Ji2/Qs1Pwpfwp1XHhIfHK2vSRopZjHfyuF3iENenvL
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Thu, 07 Aug 2025 00:14:12 GMT
When the cookie should expire.
- Set-Cookie
AWSALBCORS=QXv+M9saxxKO1uZ+T3BhSjDl5Y5At75hfIHYC0wKrtLF5kNkrDAnaXIsmeG1F0uz0yxc/hXfhavA3TyC31Ji2/Qs1Pwpfwp1XHhIfHK2vSRopZjHfyuF3iENenvL; SameSite=None; Secure; Path=/; Expires=Thu, 07 Aug 2025 00:14:12 GMT
A cookie sent from the server to be set on the client
AWSALBCORS
QXv+M9saxxKO1uZ+T3BhSjDl5Y5At75hfIHYC0wKrtLF5kNkrDAnaXIsmeG1F0uz0yxc/hXfhavA3TyC31Ji2/Qs1Pwpfwp1XHhIfHK2vSRopZjHfyuF3iENenvL
Cookie name and value.
Samesite
None
Cookie sent with both cross-site and same-site requests..
Secure
The cookie is only sent when requesting from a https domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Thu, 07 Aug 2025 00:14:12 GMT
When the cookie should expire.
- Set-Cookie
ASP.NET_SessionId=gs2txj2k1tyehqrmbordcp1q; HttpOnly; SameSite=Lax; Path=/
A cookie sent from the server to be set on the client
ASP.NET_SessionId
gs2txj2k1tyehqrmbordcp1q
Cookie name and value.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
- Set-Cookie
ASP.NET_SessionId=gs2txj2k1tyehqrmbordcp1q; HttpOnly; SameSite=Lax; Path=/
A cookie sent from the server to be set on the client
ASP.NET_SessionId
gs2txj2k1tyehqrmbordcp1q
Cookie name and value.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
- Set-Cookie
popup-home-page=true; Path=/; Expires=Thu, 31 Jul 2025 08:14:12 GMT
A cookie sent from the server to be set on the client
popup-home-page
true
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Thu, 31 Jul 2025 08:14:12 GMT
When the cookie should expire.
- Set-Cookie
__RequestVerificationToken=8oJX5wmjfQxnRHrYifMVOU173jnH58b2p7vwoizygT9SxINp_jltpR6pvUgzHJWVhUwcu7SEljxjHLZnxEJw7PzmjdI1; HttpOnly; Path=/
A cookie sent from the server to be set on the client
__RequestVerificationToken
8oJX5wmjfQxnRHrYifMVOU173jnH58b2p7vwoizygT9SxINp_jltpR6pvUgzHJWVhUwcu7SEljxjHLZnxEJw7PzmjdI1
Cookie name and value.
HttpOnly
Prevents access to the cookie through JavaScript.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
- Cf-Ray
9678e4ecad4a8cc6-EWR
Encoded information about your request from Cloudflare.
- Alt-Svc
h3=":443"; ma=86400
Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.
Service
- h3 - :443
Service
- ma - 86400 (1 day)
Max age for the alternative (seconds).
- ma - 86400 (1 day)