HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
200
Total Requests
1
Total Time
426 ms
  • IP
    87.233.165.210
    View Map

  • Timing

    Wait

    0 ms

    DNS

    157 ms

    TCP

    81 ms

    Request

    0 ms

    First Byte

    105 ms

    Download

    1 ms

    Total

    426 ms

  • HTTP Headers

    X-Xss-Protection

    1; mode=block

    Cross-site scripting (XSS) filter.

    • 1

      Enable XSS filtering.

    • Mode

      Filtering mode.

      • block - Block page if XSS is detected.
    Cache-Control

    no-cache, no-store, max-age=0, must-revalidate

    Inform all caching mechanisms from server to client whether they may cache this object.

    • no-cache

      May be stored by any cache but must be validated by the server.

    • no-store

      May not be stored by any cache.

    • Max-Age

      0

      The time a browser should remember a site can only be accessed with https (seconds).

    • must-revalidate

      Stale caches must not be used.

    Pragma

    no-cache

    HTTP/1.0 backwards compatible cache handling.

    no-cache - Force requests to the origin server before releasing a cache.

    Expires

    0

    The time at which the response is considered stale.

    Strict-Transport-Security

    max-age=31536000 ; includeSubDomains

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      31536000 (1 year)

      The time a browser should remember a site can only be accessed with https (seconds).

    • includesubdomains

      max-age applies to subdomains as well.

    X-Frame-Options

    SAMEORIGIN

    Clickjacking protection.

    SAMEORIGIN - No rendering if origin mismatch.

    Set-Cookie

    SESSION=M2NkZjBhNTQtOTZjMi00OTgxLThjZGQtZWJhOTNiYzU1MDhk; Max-Age=2147483647; Expires=Mon, 4 Jan 2094 17:48:33 GMT; Domain=symbaloo.com; Path=/; Secure; HttpOnly; SameSite=Lax

    A cookie sent from the server to be set on the client

    • SESSION

      M2NkZjBhNTQtOTZjMi00OTgxLThjZGQtZWJhOTNiYzU1MDhk

      Cookie name and value.

    • Max-Age

      2147483647 (68 years 35 days 3 hours 14 minutes 7 seconds)

      Number of seconds until the cookie expires.

    • Expires

      Mon, 4 Jan 2094 17:48:33 GMT

      When the cookie should expire.

    • Domain

      symbaloo.com

      The client will only send the cookie when requesting from this domain.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    SRV=app20; path=/; domain=symbaloo.com; Secure

    A cookie sent from the server to be set on the client

    • SRV

      app20

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Domain

      symbaloo.com

      The client will only send the cookie when requesting from this domain.

    • Secure

      The cookie is only sent when requesting from a https domain.

    Content-Type

    text/html;charset=UTF-8

    The MIME type of this content.

    • Type

      text/html

    • Description

      HTML file

    • Charset

      UTF-8

    Content-Language

    en-US

    The natural language or languages of the intended audience for the enclosed content.

    en-US - English

    Content-Length

    9438(9.44 kB)

    The length of the response body in octets (8-bit bytes).

    Date

    Wed, 17 Dec 2025 14:34:26 GMT

    The date and time that the message was sent.