HTTP Headers for signal.org

Responds with HTTP 200 from cloudflare — 2 of 6 security headers present.

Domain to Check

200 https://signal.org/

Security Headers2/6

HSTS

CSP

X-Frame-Options

X-Content-Type-Options

Referrer-Policy

Permissions-Policy

All Response Headers (14)

access-control-allow-origin*

alt-svch3=":443"; ma=86400

cache-controlpublic, max-age=0, must-revalidate

cf-cache-statusDYNAMIC

cf-ray9f1554717dfd57f4-IAD

connectionclose

content-encodinggzip

content-typetext/html; charset=utf-8

dateFri, 24 Apr 2026 13:07:14 GMT

nel{"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}

referrer-policystrict-origin-when-cross-origin

report-to{"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CmxUnkYviWm6g1mN9mrsaKvqCEAufs9%2FgKo%2B7SgEOHsb%2BgWj8Z4bVIoUdOtcdwjTKcVW6llUa0cw3GeK4WGB9egxJCITLVK7Ab%2F9v%2BzpJ1%2FoMQpWLrztlZnp6qp8"}]}

servercloudflare

x-content-type-optionsnosniff

SSL Certificate Checker

Check any domain's SSL/TLS certificate — issuer, expiry, SANs, and cipher.

→

HTTP Status Codes

Searchable reference of all HTTP status codes with descriptions and use cases.

→

WHOIS Lookup

Look up WHOIS details for any domain or IP address.

→