HTTP Headers for netlify.com

Responds with HTTP 200 OK from Netlify — 2 of 6 security headers present.

Domain to Check

200 OKhttps://www.netlify.com/

Security Headers2/6

HSTS

CSP

X-Frame-Options

X-Content-Type-Options

Referrer-Policy

Permissions-Policy

All Response Headers (16)

accept-rangesbytes

age853

cache-controlpublic,max-age=0,must-revalidate

cache-status"Netlify Edge"; hit

connectionclose

content-encodingbr

content-length109790

content-typetext/html; charset=UTF-8

dateFri, 24 Apr 2026 15:43:09 GMT

etag"cda8c8144013561426d5cfeab64a6bcd-ssl-df"

permissions-policybrowsing-topics=()

serverNetlify

server-timingcr;desc="hit-fresh", ds;dur=3, dc;desc="aws-iad", cg;desc="global-production", cl;dur=109790, dist;dur=10, tls;desc="new";dur=4

strict-transport-securitymax-age=31536000; includeSubDomains; preload

varyAccept-Encoding

x-nf-request-id01KQ02HG6D4QFXTTA1NZ9YRWP4

Check any domain's SSL/TLS certificate — issuer, expiry, SANs, and cipher.

Searchable reference of all HTTP status codes with descriptions and use cases.

Look up WHOIS details for any domain or IP address.