Scan ID:
3ade227a-63be-4549-9ec4-087746da79bfFinished
Submitted URL:
https://mcpedl.com/x-ray-plus/
Report Finished:
Public

Cookies · 0 found

Copy link

Cookies are small text files stored on a user's device, often used to remember user preferences and enable personalized experiences

JavaScript variables · 25 found

Copy link

Global JavaScript variables loaded on the window object of a page, are variables declared outside of functions and accessible from anywhere in the code within the current scope

NameType
onbeforetoggleobject
documentPictureInPictureobject
onpageswapobject
onpagerevealobject
onscrollendobject
_cf_chl_optobject
hSUG6function
qiTu2function
yLVSL7function
cQifP1function

Console log messages · 4 found

Copy link

Messages logged to the web console

LevelSourceMessage
warningother
Text
Error with Permissions-Policy header: Origin trial controlled feature not enabled: 'browsing-topics'.
warningother
Text
Error with Permissions-Policy header: Origin trial controlled feature not enabled: 'interest-cohort'.
warningother
Text
Error with Permissions-Policy header: Unrecognized feature: 'usb'.
errornetwork
URL
https://mcpedl.com/x-ray-plus/
Text
Failed to load resource: the server responded with a status of 403 ()

Security headers · 6 found

Copy link

HTTP response headers that can harden the security of a web application

Learn more...
NameValueSupportInfo
Strict-Transport-SecurityGoodDeclare that a website is only accessible over a secure connection (HTTPS).

Click to learn more...
X-Frame-OptionsSAMEORIGIN SAMEORIGINGoodIndicate whether a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>.

Click to learn more...
X-Content-Type-OptionsGoodIndicate that the MIME types advertised in the Content-Type headers should be followed and not be changed.

Click to learn more...
Content-Security-PolicyGoodControl resources the user agent is allowed to load for a given page.

Click to learn more...
Referrer-Policysame-originGoodControl how much referrer information should be included with requests.

Click to learn more...
Clear-Site-DataGoodControl the data stored by a client browser for their origins.

Click to learn more...
X-Permitted-Cross-Domain-PoliciesGoodControl whether a web client such as Adobe Flash Player or Adobe Acrobat has permission to handle data across domains.

Click to learn more...
Permissions-Policyaccelerometer=(); autoplay=(); browsing-topics=(); camera=(); clipboard-read=(); clipboard-write=(); geolocation=(); gyroscope=(); hid=(); interest-cohort=(); magnetometer=(); microphone=(); payment=(); publickey-credentials-get=(); screen-wake-lock=(); serial=(); sync-xhr=(); usb=()NewAllow and deny the use of browser features in a document or iframe.

Click to learn more...
Cross-Origin-Embedder-Policyrequire-corpNewConfigure embedding cross-origin resources into the document.

Click to learn more...
Cross-Origin-Opener-Policysame-originNewEnsure a top-level document does not share a browsing context group with cross-origin documents.

Click to learn more...
Cross-Origin-Resource-Policysame-originNewRequest that the browser blocks no-cors cross-origin/cross-site requests to the given resource.

Click to learn more...
X-XSS-ProtectionDeprecatedDeprecated. Stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.

Click to learn more...
Feature-PolicyDeprecatedDeprecated. Replaced by the Permissions-Policy header.

Click to learn more...
Expect-CTDeprecatedDeprecated. Opt in to reporting and/or enforcement of Certificate Transparency requirements.

Click to learn more...
Public-Key-PinsDeprecatedDeprecated. Allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates.

Click to learn more...

Performance Navigation Timing

Copy link

The PerformanceNavigationTiming interface provides metrics regarding the browser's document navigation events

Learn more...

Process Unload Event

EventTiming (ms)
unloadEventStart0
unloadEventEnd0

Redirect

EventTiming (ms)
redirectStart0
redirectEnd0

Service Worker Init

EventTiming (ms)
workerStart0

Service Worker Fetch Event

EventTiming (ms)
fetchStart0

DNS

EventTiming (ms)
domainLookupStart0
domainLookupEnd0

TCP

EventTiming (ms)
connectStart57
secureConnectionStart70
connectEnd126

Request

EventTiming (ms)
requestStart126

Response

EventTiming (ms)
responseStart136
responseEnd178

Processing

EventTiming (ms)
domInteractive218
domContentLoadedEventStart218
domContentLoadedEventEnd218
domComplete358

Load

EventTiming (ms)
loadEventStart358
loadEventEnd358