Threat Level: green Handler on Duty: Rick Wanner

SANS ISC: HTTP Header Usage Statistics - Internet Security | DShield HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
Link
X-Pingback
X-Content-Type-Options
P3P
X-AspNet-Version
X-XSS-Protection
X-Cache
X-Frame-Options
Content-Language
Age
CF-RAY
X-UA-Compatible
X-Adblock-Key
Via
Keep-Alive
X-Check
X-Template
X-Language
X-Varnish
Strict-Transport-Security
X-Buckets
Access-Control-Allow-Origin
X-Cacheable
P3p
Content-Location
X-Generator
X-Drupal-Cache
Status
X-AspNetMvc-Version
X-Hacker
X-Ac
X-Powered-By-Plesk
MS-Author-Via
X-Runtime
WP-Super-Cache
X-Request-Id
X-Type
X-Pass-Why
X-Cache-Group
X-Powered-CMS
Ngpass-Ngall
X-Pad
Host-Header
X-Cache-Hits
X-Mod-Pagespeed
Access-Control-Allow-Credentials
X-Request-ID
X-UA-Device
X-Iinfo
X-Logged-In
Content-Security-Policy-Report-Only
X-Backend
X-Alternate-Cache-Key
X-Dc
X-ShardId
X-ShopId
X-Via
Access-Control-Allow-Headers
Access-Control-Allow-Methods
X-Tumblr-Pixel-0
X-Tumblr-Pixel
X-Tumblr-User
X-Host
X-Served-From-Cache
X-Tumblr-Pixel-1
X-Ua-Compatible
X-Server
X-ServedBy
X-Served-By
X-ContextId
X-CDN
X-Cache-Hit
X-Tumblr-Pixel-2
X-Port
X-PC-Key
X-PC-Hit
X-Xss-Protection
MicrosoftOfficeWebServer
Content-Security-Policy
X-Cache-Lookup
X-Robots-Tag
X-PC-Host
X-PC-Date
X-PC-AppVer
MicrosoftSharePointTeamServices
X-Rack-Cache
X-Request-Country
X-Accel-Version
SPRequestGuid
X-SharePointHealthScore
X-Varnish-Cache
Powered-By
X-XRDS-Location
Content-Encoding
X-Tumblr-Pixel-3
X-Safe-Firewall
X-MS-InvokeApp
X-FRAME-OPTIONS
X-Page-Speed
X-Cache-Status
X-AH-Environment
X-Cnection
X-Amz-Cf-Id
X-PhApp
X-Wix-Renderer-Server
X-Seen-By
X-Webserver
X-Wix-Request-Id
X-Turbo-Charged-By
X-W-DC
X-INKT-SITE
X-INKT-URI
X-FullPageCaching
Composed-By
X-Firenze-Processing-Times
CF-Cache-Status
X-Content-Digest
Served-By
Request-Id
X-GitHub-Request-Id
Rating
X-BC-Is-HA
Public-Key-Pins
SPIisLatency
SPRequestDuration
X-Cache-Enabled
X-Tumblr-Content-Rating
Liferay-Portal
X-Pantheon-Endpoint
X-Pantheon-Styx-Hostname
X-Styx-Req-Id
X-Styx-Version
X-Amz-Id-2
X-Amz-Request-Id
X-Tumblr-Pixel-4
X-Node
X-Spip-Cache
X-Timer
X-Hyper-Cache
X-Sucuri-ID
X-Proxy
X-SERVER
X-Server-Name
X-XN-Trace-Token
X-XN-XNHTML
Permitted-Cross-Domain-Policies
X-HeyJason
Cf-Railgun
X-CF-Powered-By
Content-Script-Type
X-Proxy-Cache
Content-Style-Type
X-Content-Powered-By
X-Cache-Info
Alternate-Protocol
Timing-Allow-Origin
X-Clacks-Overhead
Refresh
X-FB-Debug
Upgrade
Charset
X-Hits
X-Powered-By-360WZB
X-Content-Security-Policy
Public-Key-Pins-Report-Only
X-Umbraco-Version
X-Cache-Server
X-VCache
Cartoon
X-FW-Hash
X-DynaTrace-JS-Agent
X-CDN-Geo
X-CDN-Any-IP
Alt-Svc
X-CDN-Geo-IP
X-Cache-Result
X-Cached-By
X-FW-Type
X-FW-Serve
X-FW-Static
X-Device
EagleId
X-Swift-SaveTime
X-Swift-CacheTime
X-TN-ServedBy
Real-Hostname
X-Age
X-Px
X-Loop
X-Cached
X-Permitted-Cross-Domain-Policies
X-PersistenceNode
X-TNCMS
X-Hostname
NS-RTIMER-COMPOSITE
X-Backend-Server
X-Tumblr-Pixel-5
X-Fastly-Request-ID
Access-Control-Max-Age
X-Microcachable
X-Generated-By
X-Jimdo-Pid
X-Jimdo-Wid
X-User-Agent
X-Outils-CS
X-ChromeLogger-Data
X-Url
X-Cache-Config
X-Server-Powered-By
TCN
Content-MD5
Grace
X-MiniProfiler-Ids
X-Whom
X-DDC-Arch-Trace
X-CMS-Version
X-URL
Magicmarker
Response
X-DynaTrace
X-From
Fastly-Debug-Digest
X-AWS-Id
X-Gateway
X-LJ-Flow-ID
X-Beta
X-VWS-Id
Page-Completion-Status
X-Forwarded-For
Access-Control-Expose-Headers
X-Msg-2-Log
X-Micro-Cache
Imagetoolbar
Display
X-Middleton-Display
X-Middleton-Response
X-Sol
Fpc-Cache-Id
ServedBy
X-Handled-By
Product
X-Content-Encoded-By
X-Tumblr-Pixel-6
X-Content-Options
Generator
Surrogate-Control
ServerName
X-Expires-Orig
X-Varnish-Backend
Rt-Fastcgi-Cache
X-Varnish-TTL
X-Matrix-Proxy
X-Matrix-Server
X-WebKit-CSP
X-AspNetWebPages-Version
X-ServerName
X-Hosted-By
X-TTL
X-Firenze-Processing-Time
X-Country-Code
X-FORWARDED-FOR
Powered-By-ChinaCache
X-Passed-To-DLL
X-Returned-From
X-App-Hosting
DynaTrace
IBM-Web2-Location
X-Original-Request
X-Passed-To
X-Actual-URL
X-Returned-From-DLL
X-Passed-To-BeforeDispatch
X-Returned-From-BeforeDispatch
X-Returned-From-PostProcessResponse
X-Passed-To-PostProcessResponse
X-Processed-By
X-Varnish-Cache-Hits
X-Director
X-Stale
Cxy-All
X-Version
X-Cache-Rule
X-Mobilized-By
X-ARC
PageSpeed
X-I
Content-Hash
X-Varnish-Beresp-Grace
X-Varnish-Beresp-Ttl
X-Varnish-Beresp-Status
X-UD-Method
X-ApacheServer
X-Varnish-Cacheable
PICS-Label
Retry-After
X-Nitra-Side
X-SDS
Access-Control-Allow-Method
X-LiteSpeed-Cache
X-Drupal-Dynamic-Cache
Fhost
MIME-Version
Content-Encoding-Handler
X-Download-Options
Node
X-ATG-Version
X-Server-ID
X-Track
Proxy-Agent
X-Cache-TTL
X-Art-Request-Id
Access-Control-Request-Method
X-Time
X-S
X-Cache-Age
X-Varnish-Host
X-Instart-Request-ID
Akamai-IP
SID
Powered
Content-Disposition
Lsrequestid
X-PERF
RTSS
X-Cache-Debug
Ngpass-Vcall
Proxy-Connection
X-Gamma-Serve
X-Location-Id
X-Varnish-Age
CC-CACHE
X-BS
X-I-Sp
X-WEBSERVER
X-FW
VAR-Cache
X-NoCache
X-Duration
X-Cache-Control-Orig
X-CacheServer
Host
X-Ua-Device
X-Cache-Expires
X-Front
X-CDN-Cache-Status
X-CDN-Node
X-Powered-By-Server
X-HOST
X-Varnish-Hits
X-Client-IP
X-Route-Server
Pics-Label
X-ServerID
SN
X-Purge-Host
Edge-Control
X-Do-Not-Hack
NODE
Cache
X-Cookie-Domain
X-Vtex-Processado-Em:
X-Vtex-Processed-At
X-Vtex-Remote-Cache
X-VTEX-Janus-Router-Backend-App
X-VTEX-Cache-Status-Janus-Edge
No
X-Powered-By-VTEX-Janus-ApiCache
X-Powered-By-VTEX-Janus-Edge
ServerID
X-VTEX-Cache-Status-Janus-ApiCache
X-Upstream
X-VTEX-Janus-SO
Buuteeq-Source
X-VTEX-Janus-System
X-Recruiting
X-Abuse
X-Response-Time
X-Developer
Front-End-Https
X-DNS-Prefetch-Control
X-Litespeed-Cache
Location
X-Do-Esi
Thanks
X-PwB-Node
X-CJ-Soft
X-Cache-Operation
X-PF-Uncompressing
X-Geo-IP
X-Purge-URL
X-Varnish-IP
NtCoent-Length
Server-Info
X-App-Status
NetMindSessionID
Filter-Revision
X-Trace
X-VARNISH-Cache
X-N
X-Goog-Hash
X-Device-Type
X-Varnish-Hostname
X-Frontend
X-Cdn
X-Cache-Tags
X-Grace
X-DefendeR-Status
X-Libra-UpstreamHost
X-ACMCache
X-DefendeR-Runtime
COMMERCE-SERVER-SOFTWARE
X-Speed-Cache
X-Microcache-Status
X-Geo-IP-Region
X-Geo-IPV
Webluker-Edge
X-Translation
X-Blog
X-Trace-Cache
X-Geo-IP-Metro
X-Geo-IP-Country
X-Speed-Cache-Key
X-Cookie
Server-Name
X-GeoIP-Country-Name
X-Fastcgi-Cache
X-GeoIP-Country-Code
X-Session-Reinit
Lfy
IISExport
Sfy
X-Amz-Meta-S3cmd-Attrs
X-SRV
Qs-Cache
Accept-Charset
Srv
X-Drectory-Script
X-Real-Server
X-ClientSide-Caching
X-Yadis-Location
S
X-Ttl
X-Srv
Frame-Options
BDQID
BDUSERID
BDPAGETYPE
X-Source
X-Yottaa-Metrics
Accept-Encoding
A-Powered-By
X-Yottaa-Optimizations
X-Provisioner-Version
X-Domain-Checked
Version
Author
Origin
Cm-Server
X-Magnolia-Registration
X-Varnish-Grace
Backend
X-WR-Flags
Warning
Arr-Disable-Session-Affinity
X-Daa-Tunnel
X-Highwire-RequestId
X-FIRSTBase
X-Bettercache-Proxy
X-SmartBan-Host
X-SmartBan-URL
X-Highwire-SessionId
X-Engine
Mobiquo-Is-Login
X-Varnish-RemainingGrace
HAVer
HCVer
X-Varnish-Seen-By
X-Varnish-RemainingTTL
X-Cache-CFC
X-NetCat-Version
X-Directory-Script
X-Orig-Vary
X-W3TC-Minify
X-Adobe-Loc
X-Adobe-Content
X-Sys-Req-ID
Last-Published
X-Secret
X-Cocoon-Version
CacheControlHeader
Cneonction
X-SCProxy
X-ID
Content-Transfer-Encoding
X-Object-Type
X-Content-Age
WWW-Authenticate
X-Object-Id
X-Distributed-By
X-Forwarded-Proto
LBVIS
X-WA-Info
X-Varnish-Debug-Age
X-Cache-Lifetime
AMF-Ver
Req-Id
CT
X-TempDebug
X-BackendServer
X-Cache-Control
X-Src-Webcache
X-JG-Page-Cache
Beyond-Iis
X-Ruxit-JS-Agent
X-Distributor
X-Debug
X-Cache-On
X-Origin
X-Gannett-Site-Version
X-Varnish-Server
Set-Cookie2
X-Origin-Id
Backend-Timing
X-Edge-Location
SVR
X-Analytics
X-SE-Debug
Nodo
X-SV-FromDBCache
X-Vcap-Request-Id
X-Dynatrace
X-SV-Nginx-Duration
X-Grid-Server
X-SV-CacheTags
X-SV-CreatedAt
X-SV-Edge
X-SV-Duration
X-Machine-Name
X-SV-Pid
X-APP
X-Accel-Expires
Web-Server
SSPAppContext
Ag-Send-Time
Cache-By-Node
X-Storage
Ag-Server-Time
X-Cf-Requestid
X-Resolver-IP
X-NewRelic-App-Data
X-Balanceador
X-Uid
XDomainRequestAllowed
SRV
X-FreeTag-Count
X-Varnish-HitMiss
X-Varnish-Count
X-Full-URL
Vacache
S-Cnection
X-EDGECONNECT-GUID-DEBUG
X-NginX-Server
X-AOL-SNH
X-Atraveo-ETag
X-NginX-Cache
X-Nginx-Host
X-Atraveo-Cache-Control
X-Pagename
X-Varnish-Esi-Access
X-Varnish-Esi-Method
Hamster
X-Atraveo-Expires
BALANCEDTO
X-Source-ID
X-Atraveo-Param-Rm
X-PRAM
X-Atraveo-From-Varnish-Cache
NLCacheNote
Encoding
X-Expires
X-App
X-Force
X-Atraveo-Zone
MW-Webserver
X-Empowered-By
X-Atraveo-Set-Cookie
X-Atraveo-Varnish-Server-Id
X-Atraveo-TTL
SiteName
X-Cache-Doesi
X-Varnish-Currency
Keywords
Pool-Info
X-Amz-Id-1
X-Varnish-Action
X-Cache-Action
Id
X-B-Cache
X-Webkit-CSP
X-Nhost
X-Nurl
X-Symfony-Cache
X-Req-Host
Nitro-Cache
X-Amz-Version-Id
X-Plat
X-Garden-Version
Fastcgi-Cache
X-NFE
X-Vary-Options
X-Varnish-Debug-TTL
X-Cache-Keep
MIH-PUBLIC-IDENTIFIER
CLMOB
X-Platform-Processor
X-Processing-Time
X-Platform-Router
X-Dev
ScoreTracker
MIH-CLIENT-FARM
X-Amz-Storage-Class
X-Edge-IP
X-CacheResult
MIH-PLATFORM
X-Nginx-Cache
X-Detected-Device
SS
From
X-Cache-TTL-Remaining
X-UPSTREAM
X-XTM-Node
Allow
X-Hit-Cache
X-Info
Accept-Language
Smug-CDN
X-Turpentine-Esi
ORIGIN
X-Varnish-Set-Cookie
X-Remote-Addr
X-Prefetched
X-Phpwcms-Page-Processed-In
X-Phpwcms-Release
X-TTFB-L
X-Obvious-Tid
X-Obvious-Info
Tk
X-Turpentine-Cache
X-SDE-Name
Description
X-Frames-Options
X-Env
X-SmugMug-Hiring
X-Server-Instance
X-SmugMug-Values
X-TTFB
X-Fw-Serve
TP-L2-Cache
X-Fw-Hash
TP-Cache
X-IsCacheURL
X-Revision
X-AISO-Cache
X-Varnish-Store
X-Cache-Key
X-Framework
X-Jphone-Copyright
X-Middleton-PageSpeed
X-Fw-Type
WP-AdvCache-MemCached
X-Optimization
Logging-CorrelationId
Worker
X-AISO-Server
X-Platform
X-Cms-Mode
X-AOL-HN
X-AISO-Cacheable
X-Fw-Static
X-Stage
Jobb.Assistentpoolen.Se
Jobb.Passal.Se
Myheader
X-Invoke-Duration
Sophnep-Edge-FX
Jobb.Gil.Se
X-Rocket-Nginx-Bypass
X-Site:
X-SERVER-ID
X-Unbounce-Variant
X-Unbounce-PageId
X-Unbounce-VisitorID
X-REDIRECTSERVER
Cluster-ID
X-Varnish-Bot
X-VAge
X-CID
X-CCC
If-Modified-Since
Cache-Rule
Hash
BM-Cache-Bypass
Device
X-Apm-Telemetry-Syncmark
X-Appmachine-Environment
ServerIP
X-Response
X-Powered
FROM-SERVER
SIP
Www.Myjob.Se
X-PHP-Response-Code
X-BLSR-COST
X-GSL-Server
X-App-Server
X-DSMX-Render-MS
X-DSMX-Rewrite-MS
X-ServerIndex
X-Cache-Served
X-B2f-Not-Route
X-Captured
X-CDNZZ-FCACHE
Prxy
Www.Mabracertifiering.Se
Www.Mirrorgate.Se
X-Is-Mobile
X-Actindo-RS
X-DPWN-IS-SECURE
No-Cache
X-Server-IP
X-SilverStripe-Cache
X-N-ViewType
X-Webstats-RespID
X-SSL
Open.Jobgate.Se
X-Page-Cache
OT-RequestId
Fastly-Backend-Name
X-LB
Pool
X-Id
Test.Executivepeople.Se
P3P:CP
Cache-Ctrol
X-Hosting
X-Rot
X-AWS
Microsoftsharepointteamservices
Section-Io-Id
X-Sov
X-Smartcache-Timeout
PServer
X-Response-Status
X-ASAP-Cache
LBC
X-Smartcache-Keys
X-Old-Content-Length
X-WP
X-Clara-ASAP
NnCoection
X-Ob-Mode
X-Varnish-Ttl
Copyright
X-Pageid
BM-Cache-Key
X-Node-Name
BM-Cache-Node
HOST-SERVICE
BM-Cache-Status
X-Route
X-ATM-RServer
X-ATM-RTime
X-ProxyInstancename
X-Kirra-SiteId
X-Environment
X-Twitter-Response-Tags
X-Transaction
X-Connection-Hash
X-MrHost
X-DTC
X-Powered-By-Home.Pl
Tracker
X-GeoIP
X-Vhost-ID
Debug-3-1
W
X-Hosts-Backend
Ksid
X-EPiphany-Vid
Imx-Cookies-Used
B-Powered-By
WFE
Ttl
X-Client-Vid
Sss
X-Uplex
X-Powered-By-Anquanbao
Host-Service
X-Hypernode
Xc
X-SRCache-Fetch-Status
Ews
X-SRCache-Store-Status
X-Worker
Fw-Via
X-Real-IP
X-Server-Id
Sprequestguid
X-Test
X-Ms-Invokeapp
X-Sharepointhealthscore
X-Span
X-Key
X-BKSrc
X-F-Cache
X-Channel-Maxage
Ec
X-Venda-Hitid
X-7d-Trace-Id
X-Varnish-URL
X-Oracle-DMS-ECID
X-Rewritten-By
X-Built-With
X-Trace-App
Machine
X-DN-Cache-Control
Backend-Name-Original
Ibf5scheme
X-Cache-PageType
X-Cache-Fix
Publisher
Bs-Header
Il-Cl
X-Origin-Server
X-ORACLE-DMS-ECID
X-7d-Instance-Id
CommunityServer
X-Amz-Meta-Cb-Modifiedtime
GenSvr
X-LW-Web-Server
X-Max-Age
X-Status
X-Block
X-Rack-Cors
MachineName
CpuTime
X-Hit
SBGI-1
Mime-Version
INCOMING-TIME
X-Dispatcher
X-Flow-Powered
X-FFX-B
X-This-Proto
X-Gyrobase-Publication
PROPSON-FARM
X-Dispatch
X-ESI-Enable
Akamai-Edgescape
X-Fe
SBGI-Device
X-WorkerInstancename
SBGI-RealPath
X-ManagedFusion-Rewriter-Version
SBGI-RenderTime
SBGI-9
SBGI-7
SBGI-5
SBGI-10
Sid
X-CCM
X-IDS-WS
X-AccessDev
X-Varnish-Instance
IsMobile
Servername
WP-Cache
Server-Optimized-By
Surrogate-Key
X-Server-By
X-IP
Dynatrace
X-Time-Microsecs
X-UseReverse-Proxy
Cmsid
X-View
X-Router
Aurora-Node
Access-Control-Request-Headers
X-Provided-By
X-Header
X-Router-Backend
X-Search-Id
RSL-Trace-ID
MageStack-Cache-Status
X-Varnish-Debug-Pool-Recv
X-Varnish-Debug-Varnish-TTL-Set-From-Server
X-Varnish-Restarts
MageStack-Cache-Lifetime
X-Varnish-Debug-Pool-Fetch
MageStack-Cacheable
MageStack-Loadbalancer
MageStack-Debug
X-TTL-Age
MageStack-Config
MageStack-Cache-Hits
X-Would-Your-GrandPa-Wait
RouteID
X-B
X-Webapp
Cmstype
X-ACCELERATE
Language
HA-Front
X-Your-GrandPa-Would-Wait
Acdc-Web
MageStack-Cache
MageStack-Area
X-Ar-Debug
X-Tags
X-Pagely-Cache
X-RateLimit-Remaining
X-TargSmaku
Progma
X-MCF-ID
X-LB-Server
Og
X-COUNTRY-CODE
X-JSESSIONID
X-Author
X-Cache-Original-TTL
X-Frontal
Nginx-Cache
X-FCMS-Cache
SERVER-IP
X-PHP-Engine
X-Ocache
Ibm-Web2-Location
X-Full-Url
X-T
X-AppServer-Cache-Rule
Apache
SINA-LB
SINA-TS
Tempo
MageStack-PageSpeed
Requested-Host
Hostname
XDisk
Content-Instance
DPOOL-HEADER
X-Box
X-Brought-To-You-By
X-VG-WebCache
X-EntryPoint
X-Fallback
X-Healthy
X-Varnish-Cookie-Debug
X-LS-DEBUG
X-Cache-Extended
X-Delivered-By
X-Dynamic
X-WR-MODIFICATION
Redirect
X-HW
X-Document-Guid-Path
X-Document-Guid
X-Document-Folder-Guid
X-Document-Path
X-Origin-Cache
X-IP-Address
X-NID
X-Obr-Rule
X-Document-Tracking-Type
X-DELIVERYSERVER
Cached
X-Artvisual-Server
X-Accel-Cache-Control
X-Ants-Machine-Id
X-Ants-Host
Ram
Noq
Cpu
X-Client-Addr
Mto-License-Status
X-Global-Transaction-ID
X-Flex-Tags
X-Goog-Stored-Content-Encoding
V-Age
X-Goog-Storage-Class
Bios
X-Goog-Stored-Content-Length
X-GUploader-UploadID
X-VhostID
X-HTML-Minification-Powered-By
X-HeBS-Cache-Status
RequestId
X-Goog-Metageneration
X-Backside-Transport
X-Flex-Evstart
X-Flex-Lang
X-Flex-Lastmod
X-Flex-Tag
X-Flex-Evend
X-Flex-Community
X-Goog-Generation
X-Compressor
X-Distil-CS
X-Cache-Me-Harder
X-Web-Node
X-Say-Cacheable
X-Edge-V
X-SayCDN-UA
X-OPNET-Transaction-Trace
X-Say-Original-URL
X-Config-By
X-Say-Original-UA
X-ServedByHost
X-EdgeRouter
X-Say-Original-Host
X-Say-Original-IP
X-Martin
Real-Server
MageStack-Tag
X-Pixelsilk-Server
X-Say-TTL
MageStack-Web-Node
X-SayCDN-Original-Path
X-MobileDetected
X-SayCDN-Original-Host
SL-NOREWRITE-REDIRECTS
X-Hstore
X-Hrouter
X-SayCDN-TTL
X-Pixelsilk-Version
X-Ratelimit
X-SayCDN-Original-UA
X-CO-Host
X-Accelerated-By
Aoestatic
X-CB-Server
X-Magento-Action
X-Tile-Url
X-Magento-Lifetime
X-PBY
Sprequestduration
X-R4L-VHOST
CountryCode
X-Trace-Id
Spiislatency
X-Country
Device-Os
Device-Os-Version
X-RSS-CACHE-STATUS
ServerSignature
X-HostName
X-BE
ServerTokens
X-Cache-Set
Railo-Version
X-GC-Write
X-GC-Read
X-HOSTTYPE
X-Ajaxblocks-Esi
Is-Tablet
X-GC-Pointer
X-GC-App
X-Platform-Cache
N365rili
X-Domino-CacheValidationWithETagResult
X-Domino-CacheValidationWithETagReason
X-Server-Addr
X-T3CacheTags
X-AG-MIPS
X-Avvio-Cms-Cacheload
X-ESI
X-T3Cache
X-EZPublish-InstallationID
AGI-Request-ID
X-SV
Is-Wireless-Device
X-T3CacheInfo
X-USERNAME
X-Instance
X-Sn-Servicetimems
X-Cacheable-TTL
X-Protected-By
X-Seschat-URL
X-BServer
X-BPool
Svr
OriginServer
Xonnection
Disaptch-Cache-Rule
X-Random
Content-Cache
X-Akamai-Device-Characteristics
Viewport-Width
X-Varnish-ServiceNetIP
X-Varnish-Hashed-On
Resolution-Height
Physical-Screen-Width
Physical-Screen-Height
X-SeschatTemplateID
Resolution-Width
Viewport-Initial-Scale
X-SeschatDID
X-SeschatLayout
X-SeschatRedID
INFO
Is-Mobile
Server-IP
X-Wikidot-Backend
X-SATserver
X-Pardot-Rsp
X-Orig-Host
X-Pardot-Route
X-Wikidot-Static-Cache
Dbabc
Mobile-Browser
Ajax-Preferred-Geoloc-Api
X-Pardot-LB
X-PHP
X-Request-Processing-Time
WebServer
Access-Control-Allow-Origin:
X-Rq
Kp-EeAlive
X-B3-Traceid
X-Farm-Server
X-KoobooCMS-Version
X-RAMCache
Mobile-Browser-Version
X-Request-Received
X-EZPublish-NodeID
X-Aberdeen-Site
X-Mod
X-Serendipity-InterfaceLang
X-Serendipity-InterfaceLangSource
X-MCB-Server
X-Ec-Custom-Error
X-Cookie-Request-Debug
X-Cookie-Response-Debug
X-Server-Upstream
X-Time-Spent
X-Request-Count
X-Static-Version
X-Render-Time
X-Esi
X-UA-Vendor
X-Varnish-Max-Age
X-Cache-Via
E-TAG
X-Server-Generated
X-Server-Instance-Name
X-TYPO3-Pid
X-ASAP-Age
X-Medium-Entity-Type
X-Cluster-Node
X-Medium-Entity-Id
Lookup-Cache-Hit
User-Agent
MwpReleaseVersion
DNNOutputCache
X-NMT-Proxy
X-BC
V-RESP
Web-Head
DB-Nickname
X-ACLR-Version
X-KS-Cache-Status
X-Lima-Id
X-Ghost-Cache-Status
X-Discourse-Route
X-Sc-Cache
X-Bcwwwid
X-Made-Cache-Ttl
X-Pressidium-NinukisWP-Ver
NZSpeedy
X-4ormat-Cacheable
Y-Trace
XServer
X-Sc-Path
X-Signature
X-Rack-CORS
X-Runtime-Memory
X-Remove-Cookie
X-Aberdeen-Cache
Robots
X-GRACE
HostGen
X-SL
X-Application-Context
X-LANG
X-CPU-Time
X-IB-Site-Name
X-SID
X-IB-Timestamp
Www.Aujourdhui.Com
X-J-Proxy-Hostname
X-Backend-Status
X-Checkout
Get-Dictionary
X-9XB-Server
OutputRewritten
X-J-Proxy
AcceptLangage
X-IB-Context-Urn
X-IB-Content-Type
Thinkindot-CacheControl-Type
Thinkindot-Control
X-Capoed
Thinkindot-CacheControl
Provider
ClientIP
F5-IpCliente
Gzip
X-Highwire-Cache
X-Highwire-Sitecode
X-Bstat
X-Cluster-Host
X-Cluster
X-LOCATION
RN-Server
X-Allow-Redis
X-Serverid
Front
X-IB-Content-Urn
X-J-Proxy-Servername
Httpd-Identifier
X-S-Misc
X-D-Time
X-ATP-Server
Fw-Cache-Status
X-ClusterID
X-V
Yola-ID
X-Forwarded-Host
X-Cms-Server
X-UA-Profile
X-Zendesk-Origin-Server
X-Nginx-Backend
X-RE-Ref
X-Instance-Name
X-Forwarded-Port
X-HP-CAM-COLOR
X-RESOURCE
X-PageID
Debug-Status
X-Trans-Id
X-Var-Hash
X-Url-Store
X-Relocation
X-DEBUG
X-Generation-Time
RATING
X-Zendesk-Request-Id
X-Timestamp
X-AppServer-Status
X-Frame-Option
X-NewCloud-V-Cache
X-Czt
X-Cookies-Stripped
Http
X-Backend-TTL
X-Cookie-Store
X-Nucleus-Cache
FX-TTL
X-Feature
X-Cache-Ttl
FX-Forwarded-For
FX-Cache
TotalTime
BX-Cache
BX-TTL
Edgecast
Foglight-Request-UUID
X-HA
X-Cache-Host
X-Cache-Backend
X-ServerCache-Info
X-ServerCache-Key
B2C-F-008
B2C-HG-008
X-ServerCache-Source
X-Cache-Node
X-Lang
X-Proxy-Route
X-ETag
RlogId
X-ZSITES-DNS
Esi-Enabled
X-Backend-Ip
X-Compressed-By
X-Esi-Processing
Server-Ip
X-AOESTATIC-FETCH
TIMESTAMP
DrivedBy
CtExclusions
Instapage-Variant
Fpc-Expire
X-EBAY-C-REQUEST-ID
Head
SV-Duration
X-A
X-Cache-Engine
X-DealerOn
X-KO-Site-Id
X-Device-Group
NodeId
Disablevcache
MSSmartTagsPreventParsing
MSThemeCompatible
X-Meta-Imagetoolbar
X-Meta-MSSmartTagsPreventParsing
X-Enhanced-By
X-Gondor-Server
X-UA
X-Debug-Token
Server-N
X-Meta-MSThemeCompatible
X-PressLabs-Stats
X-VC-TTL
X-EdgeConnect-Cache-Status
X-Mii-Cache-Hit
Be-Ip
D
X-Ct-Info
X-TAProxy
X-IIJ-Cache
Countrycode
Be-Va
Orgin-Server
Kanooh-Host
X-We-Are-Hiring
X-Pb-Mii
X-Nginx
X-Process-Time
X-Purge-Level
X-EvoSuite-Secs
ResponseSpeed
X-EvoSuite-Machine
X-Webobjects-Loadaverage