Threat Level: green Handler on Duty: Didier Stevens

SANS ISC HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
X-Pingback
Link
X-AspNet-Version
P3P
X-Content-Type-Options
X-XSS-Protection
X-Cache
Age
Content-Language
X-Adblock-Key
X-UA-Compatible
X-Frame-Options
Via
Keep-Alive
CF-RAY
X-Language
X-Template
X-Check
X-Buckets
Content-Location
P3p
X-Varnish
X-Cacheable
Access-Control-Allow-Origin
Alternate-Protocol
X-Generator
X-Drupal-Cache
WP-Super-Cache
X-Ac
X-Hacker
Strict-Transport-Security
Status
X-Powered-By-Plesk
MS-Author-Via
X-AspNetMvc-Version
X-Request-Id
X-Runtime
X-Pad
X-Geo-Port
X-Geo
X-Xss-Protection
X-Powered-CMS
X-Mod-Pagespeed
X-Type
X-Pass-Why
X-Cache-Group
Access-Control-Allow-Credentials
Ngpass-Ngall
X-Logged-In
MicrosoftOfficeWebServer
X-Cache-Hits
Host-Header
X-Cache-Lookup
X-Host
X-Server
X-UA-Device
X-Proxy-Cache
X-Iinfo
MicrosoftSharePointTeamServices
Access-Control-Allow-Headers
X-Via
Access-Control-Allow-Methods
X-Backend
SPRequestGuid
X-SharePointHealthScore
X-Tumblr-User
X-Rack-Cache
X-Tumblr-Pixel-0
X-Tumblr-Pixel
X-XRDS-Location
X-Robots-Tag
X-Served-By
X-CF-Powered-By
X-Varnish-Cache
X-Tumblr-Pixel-1
X-Sorting-Hat-PodId-Cached
X-Dc
X-Sorting-Hat-PodId
X-Sorting-Hat-ShopId
X-Sorting-Hat-ShopId-Cached
X-Accel-Version
X-CDN
X-ContextId
X-ShopId
X-Alternate-Cache-Key
X-ShardId
X-ServedBy
X-MS-InvokeApp
Content-Encoding
X-Safe-Firewall
X-Cnection
X-Tumblr-Pixel-2
X-Seen-By
X-BC-Is-HA
X-INKT-SITE
X-INKT-URI
X-Webserver
X-PhApp
X-Hostname
X-PC-Hit
X-PC-Key
X-PC-AppVer
X-PC-Date
X-PC-Host
Composed-By
X-Cache-Hit
X-Page-Speed
X-FullPageCaching
Served-By
X-AH-Environment
X-Port
Content-Security-Policy-Report-Only
Cartoon
X-FRAME-OPTIONS
X-Firenze-Processing-Times
X-Cache-Status
Public-Key-Pins
X-Tumblr-Pixel-3
X-Amz-Cf-Id
Cf-Railgun
X-Age
X-HeyJason
X-W-DC
X-XN-Trace-Token
X-XN-XNHTML
X-Spip-Cache
Request-Id
X-Wix-Renderer-Server
X-Wix-Request-Id
Liferay-Portal
Content-Script-Type
Content-Style-Type
X-Wix-Dispatcher-Cache-Hit
X-Served-From-Cache
Content-Security-Policy
SPIisLatency
X-Powered-By-360WZB
SPRequestDuration
X-Content-Digest
CF-Cache-Status
X-Amz-Id-2
X-Amz-Request-Id
X-Server-Name
X-Umbraco-Version
X-Pantheon-Endpoint
X-Styx-Build-Num
X-Styx-Build-Sha
X-Styx-Build-Date
X-Pantheon-Styx-Hostname
X-Styx-Req-Id
X-Styx-Version
X-Timer
X-Request-ID
X-Clacks-Overhead
X-Cache-Info
Powered-By
X-Cache-Server
X-Hyper-Cache
X-SERVER
X-DynaTrace
Rating
X-Turbo-Charged-By
X-Device
X-Cache-Enabled
TCN
X-From
X-Outils-CS
X-Px
Real-Hostname
X-TN-ServedBy
X-Tumblr-Pixel-4
X-Loop
X-PHP-Engine
X-FB-Debug
X-VCache
X-CDN-Geo
X-CDN-Any-IP
X-CDN-Geo-IP
X-Cached-By
DynaTrace
X-Forwarded-For
NS-RTIMER-COMPOSITE
X-Cache-Resuilt
X-Url
X-TNCMS
X-PersistenceNode
X-Cached
X-Microcachable
Refresh
Imagetoolbar
X-Hits
X-Generated-By
Access-Control-Max-Age
Ms-Author-Via
Product
X-Tumblr-Content-Rating
Charset
Powered-By-ChinaCache
IBM-Web2-Location
Page-Completion-Status
Magicmarker
X-Backend-Server
X-Loc
X-Content-Encoded-By
X-DynaTrace-JS-Agent
X-FW-Hash
X-Tumblr-Pixel-5
X-Processed-By
X-Content-Security-Policy
X-Matrix-Proxy
X-Director
X-Matrix-Server
X-FW-Static
X-FW-Type
X-FW-Serve
X-Permitted-Cross-Domain-Policies
X-CMS-Version
X-Zephyr
X-Mobilized-By
X-Node
Response
CC-CACHE
X-User-Agent
X-Jimdo-Wid
X-Jimdo-Pid
ServedBy
X-DDC-Arch-Trace
X-I
Thanks
X-Content-Options
X-Middleton-Display
Display
X-Middleton-Response
X-Sol
Generator
X-Firenze-Processing-Time
PICS-Label
Access-Control-Request-Method
X-Version
X-DNS-Prefetch-Control
X-Powered-By-Anquanbao
X-Swift-CacheTime
X-Swift-SaveTime
Grace
X-App-Hosting
Retry-After
X-Cache-Config
X-MiniProfiler-Ids
X-Expires-Orig
X-SDS
X-Whom
X-Varnish-TTL
X-UD-Host
X-AspNetWebPages-Version
X-UD-Method
X-Purge-Host
X-ATG-Version
X-WebKit-CSP
X-Micro-Cache
X-ApacheServer
X-W3TC-Minify
Node
Edge-Control
RTSS
X-Varnish-Host
X-Varnish-Backend
SID
Ngpass-Vcall
Content-Disposition
X-Country-Code
Vacache
Proxy-Agent
X-Hosted-By
X-Instart-Request-ID
X-Cache-Debug
MIME-Version
Host
Content-Encoding-Handler
VAR-Cache
X-Cache-Result
X-SRV
Lsrequestid
X-Cache-Expires
X-Original-Request
X-Handled-By
X-FW
X-Passed-To-PostProcessResponse
X-Passed-To
X-Actual-URL
X-Passed-To-BeforeDispatch
X-Passed-To-DLL
X-Returned-From-BeforeDispatch
X-Returned-From
X-Returned-From-PostProcessResponse
X-Purge-URL
X-Returned-From-DLL
X-URL
Set-Cookie2
Alt-Svc
Accept-Encoding
Surrogate-Control
Pics-Label
X-NoCache
X-Nitra-Side
X-Varnish-Hits
X-Art-Request-Id
X-PERF
X-PF-Uncompressing
ServerName
X-FORWARDED-FOR
Proxy-Connection
X-PwB-Node
X-Drectory-Script
X-Cdn
X-Duration
NODE
X-TTL
X-Varnish-Cacheable
X-Varnish-IP
X-Cookie-Domain
S
COMMERCE-SERVER-SOFTWARE
X-LiteSpeed-Cache
WWW-Authenticate
X-ACMCache
ServerID
X-Speed-Cache
X-Speed-Cache-Key
X-CJ-Soft
X-Track
Fpc-Cache-Id
X-Varnish-Cache-Hits
X-ServerID
Srv
X-Distil-CS
X-Time
Cm-Server
X-Cache-Control-Orig
X-Yadis-Location
X-Cache-Age
X-Tumblr-Pixel-6
X-Front
Cache
X-Ttl
X-Stale
Rt-Fastcgi-Cache
IISExport
Webluker-Edge
X-GeoIP-Country-Name
X-Location-Id
X-GeoIP-Country-Code
Accept-Charset
X-App-Status
X-Adobe-Content
X-S
X-Varnish-Age
Powered
AMF-Ver
X-Vary-Options
A-Powered-By
SN
X-FIRSTBase
Upgrade
X-ServerName
Fhost
Qs-Cache
Nodo
Req-Id
X-Directory-Script
X-Amz-Meta-S3cmd-Attrs
Version
Filter-Revision
SEOMOZ
X-Cache-Rule
MJ12bot
X-Gamma-Serve
X-Trace-Cache
X-BackendServer
Buuteeq-Source
NetMindSessionID
X-Orig-Vary
X-SN
X-Bettercache-Proxy
X-CHSN
X-Microcache-Status
X-Device-Type
X-Translation
X-Distributed-By
X-Cache-TTL
X-Varnish-Beresp-Grace
X-Varnish-Beresp-Ttl
X-Varnish-Beresp-Status
X-Cache-Lifetime
Location
Server-Name
X-Session-Reinit
PageSpeed
Cache-By-Node
Dispatcher
X-Object-Id
X-Object-Type
X-Cache-CFC
X-Blog
X-Response-Time
ORIGIN
Id
X-Xrds-Location
X-Trace
X-HOST
X-Highwire-RequestId
Front-End-Https
X-Highwire-SessionId
Warning
X-Powered-By-VTEX-Janus-Router
X-Do-Not-Hack
X-WR-Flags
X-Sys-Req-ID
LBVIS
X-VTEX-Janus-Router-Backend-App
X-VTEX-Cache-Status-Janus-ApiCache
X-VTEX-Cache-Status-Janus-Edge
X-Powered-By-VTEX-Janus-Edge
No
X-Vtex-Processado-Em
X-Vtex-Processed-At
X-Vtex-Remote-Cache
X-Powered-By-VTEX-Janus-ApiCache
NtCoent-Length
X-Old-Content-Length
X-Provisioner-Version
X-Domain-Checked
MIH-PUBLIC-IDENTIFIER
X-Cache-Operation
CT
X-App
X-Recruiting
MIH-PLATFORM
X-Cache-Action
X-Country
X-Cocoon-Version
MIH-CLIENT-FARM
X-Src-Webcache
X-Secret
Backend
X-SBGI-Cache-Codes
XX
X-AOL-SNH
Content-Transfer-Encoding
X-Server-Id
X-ID
Server-Info
Website-Info
X-Symfony-Cache
X-N
X-Frontend
X-Server-ID
NLCacheNote
XDomainRequestAllowed
X-Varnish-HitMiss
X-Varnish-Count
Cteonnt-Length
X-Cache-On
Content-MD5
Apache
X-Varnish-Server
X-Expires
S-Cnection
-GCR
X-LIGHTHTTP-PCDID
X-Geo-IP
Machine
X-Powered-By-Server
X-WebServer
X-Varnish-Action
X-FreeTag-Count
Access-Control-Expose-Headers
From
X-Turbo-Control
Beyond-Iis
X-Header
Cxy-All
BM-Cache-Node
BM-Cache-Key
X-Id
X-Wily-Servlet
BM-Cache-Status
X-Who
X-Wily-Info
MW-Webserver
X-ClientSide-Caching
X-Cluster-Node
Pool
Origin
X-Cache-Control
X-Empowered-By
X-Gannett-Site-Version
X-Amz-Id-1
X-Machine-Name
X-UPSTREAM
X-Edge-Location
X-ORACLE-DMS-ECID
X-Cache-Set
X-Geo-IP-Country
X-Remote-Addr
X-Resolver-IP
X-Geo-IP-Metro
TP-L2-Cache
TP-Cache
X-Geo-IPV
X-Geo-IP-Region
X-Frames-Options
Provided-Host
X-ChromeLogger-Data
X-Yottaa-Metrics
X-Info
X-Rewritten-By
X-Yottaa-Optimizations
X-ManagedFusion-Rewriter-Version
W
Front
LBC
CommunityServer
X-Req-Host
X-Srv
X-Force
X-PRAM
X-Engine
X-Real-Server
X-Origin-Id
X-Source-ID
X-Developer
X-DPWN-IS-SECURE
Last-Published
X-SDE-Name
Spiislatency
Sprequestduration
X-Accel-Expires
X-Ar-Debug
X-BS
X-ATM-RTime
SFY
X-ServerCache-Info
X-Abuse
Www.Myjob.Se
Www.Mirrorgate.Se
NnCoection
X-Oracle-DMS-ECID
REFRESH
Cluster-ID
X-TempDebug
Progma
X-Beatles
LFY
Content-Instance
SiteName
X-Loopia-Cache
Www.Mabracertifiering.Se
Jobb.Passal.Se
Open.Jobgate.Se
P3P:CP
X-ATM-RServer
X-Actindo-RS
Jobb.Gil.Se
Test.Executivepeople.Se
Jobb.Assistentpoolen.Se
Publisher
X-Server-Instance
X-Ms-Invokeapp
X-UD-Loopcounter
X-Farm-Server
X-UD-REMOTE-ADDR
BM-CountryCode
X-UD-Target
X-REDIRECTSERVER
X-CID
X-Nginx-Cache
X-Atraveo-Varnish-Server-Id
SRV
X-SilverStripe-Cache
X-CCC
SVR
X-Atraveo-Cache-Control
X-Atraveo-From-Varnish-Cache
X-Atraveo-TTL
X-Atraveo-NC
HAVer
WEBO
HCVer
X-T3Cache
SS-Request-ID2
Sophnep-Edge-FX
X-Stage
Web-Server
X-Built-By
X-Amz-Version-Id
X-Debug
X-T3CacheTags
X-PM-ID
X-Phpwcms-Release
X-Phpwcms-Page-Processed-In
X-Uid
X-Vhost-ID
X-SSL
X-Webstats-RespID
X-Enhanced-By
Aoestatic
X-UseReverse-Proxy
X-Webapp
X-Router-Backend
Servername
Edgecast
X-Router
X-Grace
X-Dev
X-Drupal-Cache-Tags
ScoreTracker
Pool-Info
X-Ruxit-Js-Agent
X-Content-Age
X-Storage
X-Grid-Server
Cneonction
X-Max-Age
X-N-ViewType
X-Unbounce-Variant
X-Unbounce-VisitorID
Hamster
Dynatrace
X-EPiLogOnScreen-PostUrl
X-Varnish-Device
X-Response
X-Varnish-ID
X-FFX-B
X-CACHE-TTL
Cache-Ctrol
X-Powered-Developer
X-ESI-Enable
X-Goog-Hash
X-Unbounce-PageId
Cmsid
Cmstype
X-Env
X-EPiLogOnScreen
X-Vhost
X-7d-Version
X-Li-Fabric
Rt-Server
Muha
X-Invoke-Duration
Worker
X-Cms-Mode
X-Cache-Ttl
Ttl
X-Node-Name
X-DTC
X-Dynamic
Cache-Rule
X-CacheServer
X-Brought-To-You-By
X-Libra-UpstreamHost
X-Li-Pop
No-Cookie
X-APP
X-Nginx-Host
X-Dynatrace
BM-Cache-Bypass
SIP
X-Powered
X-7dig
X-B2f-Not-Route
X-Jphone-Copyright
X-Flow-Powered
X-WR-MODIFICATION
WFE
X-MCB-Server
X-FS-UUID
X-7d-Traceid
X-LI-UUID
Mime-Version
X-Monstercache-Timeout
CacheControlHeader
X-Webobjects-Loadaverage
CACHED-RESPONSE
X-Nhost
If-Modified-Since
Arr-Disable-Session-Affinity
X-Garden-Version
X-WorkerInstancename
X-I-Sp
X-NginX-Server
X-Prerender-Token
X-Fastcgi-Cache
Bs-Header
X-NFE
Server-N
X-BKSrc
F-In-Cache
X-Venda-Hitid
X-SV
Mobiquo-Is-Login
X-Render-Time
X-Origin
X-Mobile
X-Cookie-Request-Debug
X-Frontal
X-DB-Content-Length
X-Cookie-Response-Debug
X-WA-Info
X-Monstercache-Host
X-Monstercache-Hash
X-Web-Node
X-Cache-Extended
X-Domino-CacheValidationWithETagResult
X-Domino-CacheValidationWithETagReason
X-Kirra-SiteId
X-Edge-IP
Before
X-Pageid
After
Xonnection
X-Artvisual-Server
X-Download-Options
X-Plat
ExecuteNonQuerySQLParam
IsFullSiteRequest
Tpt.Renderer1
X-OPNET-Transaction-Trace
X-Server-IP
Tpt.Renderer
X-Varnish-Debug-Age
Render
ServerConfigManager.WebBugTracker
Sid
X-IP-Address
X-MSEdge-Ref
X-App-Server
WP-AdvCache-MemCached
Backend-Name-Original
X-Block
X-Channel-Maxage
X-Trace-App
Smug-CDN
X-App-Container
X-DSMX-Rewrite-MS
X-DSMX-Render-MS
X-TTFB
X-TTFB-L
X-Pagename
X-Hit-Cache
X-SmugMug-Values
X-Client-IP
X-CacheTTL
X-SmugMug-Hiring
Author
X-DeliveryServer
X-GC-Write
X-Is-Mobile
X-LB
X-Transaction
X-GC-Read
X-Connection-Hash
X-WP
Accept-Language
INCOMING-TIME
Ms
X-SERVER-ID
X-GC-App
X-Akamai-Device-Characteristics
X-Twitter-Response-Tags
X-Hstore
X-Hrouter
X-Hash
X-EdgeRouter
X-Middleton-PageSpeed
X-MobileDetected
X-Flex-Tags
X-Cached-Status
X-Flex-Tag
X-Flex-Lastmod
X-Flex-Community
X-Flex-Evstart
X-Flex-Lang
X-Flex-Evend
X-Backend-IP
WP-Cache
MageStack-Cache-Status
MageStack-Cache-Hits
MageStack-Cache-Lifetime
Copyright
MageStack-Cache
Ozcache
PServer
MageStack-Area
X-This-Proto
X-Confluence-Request-Time
X-Content-Security-Policy-Report-Only
X-Client-Vid
X-FCMS-Cache
X-EPiphany-Vid
X-Node-ID
X-PvInfo
CP
B-Powered-By
X-DefendeR-Status
X-ProxyInstancename
X-SeschatLayout
X-SeschatRedID
X-SeschatTemplateID
X-SeschatDID
X-Seschat-URL
X-DefendeR-Runtime
MageStack-Cacheable
X-DC-Origin-IP
D
X-Revision
X-B
X-V-Outer
Test
X-AccessDev
X-ACLR-Version
X-V-TTL
Ksid
At-Isb
OGHopCount
X-CDN-Cache-Status
Secured
X-Cache-Via
X-Author
X-V-I-TTL
X-Varnish-Cookie-Debug
X-UA-Profile
X-Varnish-Currency
FROM-SERVER
MageStack-Config
Url-Hash
X-T
X-GSL-Server
X-Cookie
X-Req-Url
X-Created
X-Ocache
X-CDN-Node
X-ACCELERATE
X-Serendipity-InterfaceLangSource
Masquerade
UniqueName
SBMCLOUD
X-Serendipity-InterfaceLang
X-Time-Microsecs
Ec
IsMobile
MageStack-Response-Ttl
MageStack-Tag
MageStack-Loadbalancer
XDisk
Ibf5scheme
X-Req-Counter
X-CMS-Powered-By
X-Hit
Tempo
MGIT
X-PageID
MageStack-PageSpeed
X-Monstercache
MageStack-Debug
X-WLD-LB
MachineName
X-NginX-Cache
X-Apple-Jingle-Correlation-Key
X-Apple-ATS-Cache-Key
X-Apple-Application-Instance
X-Ec-Custom-Error
X-Apple-Orig-Url
Tracker
X-DELIVERYSERVER
Apple-Timing-App
X-Apple-Application-Site
X-Apple-Aka-Ttl
X-IP
X-Apple-Partner
X-Cache-Doesi
X-IDS-WS
X-Ants-Machine-Id
X-Apple-Translated-Wo-Url
X-Would-Your-GrandPa-Wait
X-VhostID
X-Your-GrandPa-Would-Wait
X-VG-WebCache
X-CMS
Fastcgi-Cache
WebDevSrc
X-Varnish-Restarts
X-Varnish-Debug-Pool-Recv
OutputRewritten
X-Varnish-Debug-Varnish-TTL-Set-From-Server
At-Shoptype
X-GitHub-Request-Id
X-Compressor
X-Request-Time
X-Magento-Action
X-Magento-Lifetime
X-Hostingcenter
X-Site
X-Fett
Atp-Isdpp
X-NID
X-Powered-By-Srv
X-Provided-By
CorrelationVector
X-Varnish-Max-Age
X-Nucleus-Cache
Requested-Host
X-Varnish-Debug-Pool-Fetch
X-Dokk-PortalId
X-Backend-Status
X-ELC-Checkpoint4
ServerIP
X-HA
CountryCode
Tracecode
X-Cache-Backend
X-Checkout
X-Cookie-Store
SS
X-Cached-Until
X-Cache-Host
X-Cached-On
AcceptLangage
X-Hosting
X-TTL-Age
X-ErrorPage
X-Uplex
X-Url-Store
X-Var-Hash
X-Environment
X-Test
X-HW
X-Ratelimit
X-Rack-Cors
X-Origin-Cache
X-Route
X-T3CacheInfo
X-Compressed-By
Www.Aujourdhui.Com
X-Wikidot-Backend
X-Wikidot-Static-Cache
Z-NginxStatus
BrandBucket-Domain
X-USERNAME
X-TLServer
X-D-Time
X-Generation-Time
X-HOSTTYPE
X-S-Misc
Host-Service
Nitro-Cache
UNIQUE-ID
X-GeoIP-Country
X-Instance
X-Key
Thinkindot-Control
Thinkindot-CacheControl-Type
Provider
SB-Cache-Version
Thinkindot-CacheControl
X-Catalyst
X-AISO-Server
Nodeid
Noq
Ram
Unique-Request-Id
Cpu
BALANCEDTO
Access-Ip
X-PoolMember
Allow
Backend-Host
X-EntryPoint
X-Fallback
X-UType
Esi-Enabled
X-AISO-Cache
X-AISO-Cacheable
X-Upstream
X-HP-CAM-COLOR
X-Foresight-Air
X-Foresight-Customresponse
X-Healthy
X-Planisys-CDN-Cache
NZSpeedy
X-SATserver
ResourceTag
Redirect
X-CCM
X-Magnolia-Registration
Public-Extension
X-Varnish-ServiceNetIP
X-RSS-CACHE-STATUS
X-Planisys-CDN-Rules
X-Varnish-Debug-Hits
X-RateLimit
X-RequesterIP
SV-Duration
X-Server-Node
X-Varnish-Hashed-On
Orgin-Server
X-WHOIS-Cached
OriginServer
X-Highwire-Cache
X-Litespeed-Cache
X-Cluster-ID
Webserver
X-Aberdeen-Site
X-Client-Id
X-Aberdeen-Cache
X-Cachable
Description
Rewriter
X-Benchmark-Sphinx-Count
Viewport-Width
X-Benchmark-Db
X-Benchmark-Sphinx
Keywords
SSPAppContext
X-Highwire-Sitecode
Il-Cl
X-Benchmark-Total
X-Gondor-Server
Disaptch-Cache-Rule
Server-IP
DB-Nickname
X-ARR
Rt-Proxy-Cache
X-ENV
Be-Va
Be-Ip
X-Pb-Mii
X-Purge-Level
Noahs-Classifieds
X-GeoIP
CPOINT
Head
X-Nocache
Be
X-SERVERID
X-Mii-Cache-Hit
X-Device-Group
Timing-Allow-Origin
X-Client-Addr
RayEngine
Protected-By
MwpReleaseVersion
X-Upstream-Time
Hotelbookingid
X-ATP-Server
X-Cache-Key
X-Allow-Redis
Server-Optimized-By
Max-Age
X-Node-Id
X-Benchmark-Cache
X-MidCOM-Meta-Cache
CData
Railo-Version
Resolution-Height
Time
X-Accelerated-By
Mobile-Browser
Is-Wireless-Device
Resolution-Width
Ajax-Preferred-Geoloc-Api
Device-Os
Is-Mobile
X-TAProxy
Xc
DrivedBy
Device-Os-Version
Language
X-Process-Time
Physical-Screen-Width
Is-Tablet
Content-Cache
Encoding
X-Panel-Id
ProxiaInstanceId
Mobile-Browser-Version
Viewport-Initial-Scale
SAVVIS
User-Id
User-Updated-At
X-Panel-Name
Physical-Screen-Height
X-Prefetched
X-ProcessESI
X-Server-Generated
X-Static-Version
Content
X-Request-Count
X-RemovedCookies
X-ESI
X-Daa-Tunnel
X-Dynatrace-Js-Agent
X-B2f-Cache-Load
X-Rot
X-Path
Gzip
X-Avvio-Cms-Cacheload
X-Source
F5-IpCliente
Cleartype
X-AMAZEEIO
X-Webbins-Node
ClientIP
X-Cdn-View
X-AG-MIPS
WEB-CLUSTER-NODE
SLB
X-Mod
X-FRONT-TTL
HGR-NOCACHE
TIMESTAMP
X-Ants-Host
X-Gyrobase-Publication
X-Built-With
X-Sov
X-Rq
X-Request-Processing-Time
X-Crafted
X-App-Reload-Settings
Foglight-Request-UUID
X-Request-Received
X-Server-By
User-Cache-Control
SL-NOREWRITE-REDIRECTS
C-TTL
X-Varnish-Hostname
X-Ruxit-JS-Agent
X-Esi
Server-Hostname
Device
X-VAR-Hash
Robots
X-Bcwwwid
X-Powered-By-Home.Pl
X-Fpc
X-Src-Loadbalancer
X-AppServer-Status
X-Backend-Name
Sigma
AMFplus-Ver
X-UserAgent
X-Locale
X-Logword
X-Restarts
X-We-Are-Hiring
X-Debug-Serve
Content-ID
X-RAMCache
X-Forwarded-Proto
X-CDN-Version
X-Cacheable-TTL
X-BServer
X-BPool
X-IP-BE
X-NewRelic-App-Data
Access-Control-Allow-Origin:
X-TISSERVER
X-R4L-VHOST
X-Distributor