Threat Level: green Handler on Duty: Rick Wanner

SANS ISC HTTP Header Usage Statistics


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This is a continuation of work started by Brough Davis as part of his software security project for his Masters in Information Security Engineering. The main goal of this project is to find how many sites use security relevant headers, like for example the X-XSS-Protection or X-Frame-Options headers.

Below you will find a table/histogram showing how many times we found each header (security relevant or not). We access the index page of each site using a "head" request. The list of sites is derived from Alexa's Top 1 Million sites. We try to poll as many sites as possible each day.

As we collect more data, we will plot changes over time.



All Headers Active In The Past Month
Header Popularity
Content-Type
Date
Server
Connection
Set-Cookie
Cache-Control
X-Powered-By
Vary
Expires
Content-Length
Last-Modified
Pragma
Accept-Ranges
ETag
X-Pingback
X-AspNet-Version
P3P
Link
X-Content-Type-Options
X-XSS-Protection
Age
X-Cache
Alternate-Protocol
Content-Language
X-UA-Compatible
Via
X-Adblock-Key
Content-Location
Keep-Alive
X-Frame-Options
CF-RAY
X-Varnish
X-Check
X-Language
X-Buckets
X-Template
X-Cacheable
Access-Control-Allow-Origin
P3p
X-Generator
X-Drupal-Cache
X-Hacker
WP-Super-Cache
Status
MS-Author-Via
X-Powered-By-Plesk
X-AspNetMvc-Version
X-Ac
X-Pad
X-Runtime
X-Geo-Port
X-Geo
X-Request-Id
Strict-Transport-Security
X-Powered-CMS
X-Server
MicrosoftOfficeWebServer
X-Host
X-Type
X-Cache-Group
Access-Control-Allow-Credentials
X-Cache-Lookup
Ngpass-Ngall
X-Logged-In
X-Mod-Pagespeed
X-UA-Device
X-Cache-Hits
MicrosoftSharePointTeamServices
Host-Header
X-Rack-Cache
X-Url
X-Via
X-Tumblr-User
X-Tumblr-Pixel-0
X-Tumblr-Pixel
X-XRDS-Location
SPRequestGuid
X-Iinfo
X-SharePointHealthScore
X-Tumblr-Pixel-1
Access-Control-Allow-Headers
X-Backend
X-Forwarded-For
X-Varnish-Cache
X-CF-Powered-By
Content-Encoding
Access-Control-Allow-Methods
X-Robots-Tag
X-Served-By
X-Tumblr-Pixel-2
X-Accel-Version
X-Webserver
X-MS-InvokeApp
X-ContextId
X-Cnection
X-PhApp
X-Page-Speed
X-ServedBy
X-INKT-URI
X-INKT-SITE
X-BC-Is-HA
X-Xss-Protection
X-Safe-Firewall
X-CDN
X-ShopId
X-ShardId
X-Alternate-Cache-Key
Composed-By
Served-By
X-Hostname
X-Cache-Hit
X-Firenze-Processing-Times
X-PC-Hit
X-PC-Key
X-FRAME-OPTIONS
X-Pass-Why
X-PC-AppVer
X-PC-Date
X-PC-Host
X-Served-With
X-Tumblr-Pixel-3
X-Sorting-Hat-ShopId-Cached
X-Sorting-Hat-PodId
X-Sorting-Hat-ShopId
X-Sorting-Hat-PodId-Cached
X-XN-Trace-Token
X-XN-XNHTML
X-AH-Environment
X-Port
X-Source
X-Rot
X-Powered-By-360WZB
X-Cache-Status
X-Age
Content-Script-Type
Liferay-Portal
Content-Style-Type
X-Spip-Cache
X-Amz-Id-2
X-Server-Name
X-Umbraco-Version
X-Amz-Cf-Id
Cf-Railgun
Content-Security-Policy
Cartoon
X-Cache-Info
X-Amz-Request-Id
Request-Id
X-HeyJason
SPIisLatency
SPRequestDuration
X-Content-Digest
Powered-By-ChinaCache
X-Cache-Server
X-Cache-Result
X-FB-Debug
X-Request-ID
X-DynaTrace
X-Kafka-Logged
X-Served-From-Cache
Rating
X-Hyper-Cache
X-Device
X-Outils-CS
X-Styx-Build-Date
X-Styx-Version
X-Styx-Build-Sha
X-Styx-Build-Num
X-Pantheon-Styx-Hostname
X-Pantheon-Endpoint
X-Styx-Req-Id
X-TN-ServedBy
Real-Hostname
X-Timer
X-PHP-Engine
X-Loop
Refresh
X-Tumblr-Pixel-4
TCN
X-VCache
X-Cached-By
X-Px
X-Mobilized-By
DynaTrace
X-TNCMS-Memory-Usage
X-PersistenceNode
X-TNCMS-Render-Time
X-TNCMS-Served-By
X-TNCMS-Version
CF-Cache-Status
Magicmarker
NS-RTIMER-COMPOSITE
X-URL
X-Generated-By
X-Cached
Page-Completion-Status
Imagetoolbar
IBM-Web2-Location
X-Original-Content-Length
X-Tumblr-Content-Rating
X-Content-Encoded-By
X-Loc
X-From
X-Tumblr-Pixel-5
Thanks
X-FullPageCaching
X-W3TC-Minify
X-DynaTrace-JS-Agent
X-CMS-Version
Product
X-CDN-Any-IP
X-CDN-Geo
X-CDN-Geo-IP
X-Content-Security-Policy
X-Matrix-Server
X-Matrix-Proxy
X-Zephyr
X-Node
X-Xrds-Location
X-Cache-Enabled
X-Backend-Server
X-WebKit-CSP
X-Powered-By-Anquanbao
Access-Control-Max-Age
X-DDC-Arch-Trace
Pics-Label
Charset
X-Firenze-Processing-Time
Generator
ServedBy
X-Varnish-Cacheable
X-Proxy-Cache
X-FORWARDED-FOR
Powered-By
Node
Retry-After
IISExport
Set-Cookie2
Content-Encoding-Handler
Proxy-Agent
X-I
X-Content-Options
X-Drectory-Script
X-UD-Method
MIME-Version
X-UD-Host
X-Processed-By
ServerName
Response
X-SDS
X-Original-Request
X-App-Hosting
X-SERVER
Lsrequestid
X-Actual-URL
X-Passed-To-BeforeDispatch
X-Returned-From-DLL
X-Returned-From-PostProcessResponse
X-Varnish-Backend
X-Returned-From
X-Passed-To-PostProcessResponse
X-Passed-To
X-Passed-To-DLL
X-Varnish-Host
X-Handled-By
X-Returned-From-BeforeDispatch
X-DNS-Prefetch-Control
X-ATG-Version
X-Permitted-Cross-Domain-Policies
X-Cache-Debug
X-FW-Hash
X-User-Agent
Access-Control-Request-Method
SID
X-FW-Type
X-FW-Serve
X-FW-Static
X-Sol
PICS-Label
X-HOST
X-PF-Uncompressing
Cache-By-Node
X-ApacheServer
X-NoCache
X-Varnish-TTL
X-Purge-Host
X-Expires-Orig
X-AspNetWebPages-Version
Edge-Control
X-Duration
Accept-Encoding
X-Middleton-Response
Host
X-Cache-Expires
X-Director
X-LiteSpeed-Cache
RTSS
X-Front
S
X-PERF
X-Hits
Fhost
X-SN
X-Nitra-Side
COMMERCE-SERVER-SOFTWARE
X-Cache-Control-Orig
X-Purge-URL
X-Cache-Config
X-TTL
X-PwB-Node
Content-Disposition
X-Varnish-Hits
WWW-Authenticate
Cm-Server
X-Vary-Options
X-CJ-Soft
X-Yadis-Location
Grace
X-Hosted-By
X-ServerID
X-Cookie-Domain
NtCoent-Length
X-Micro-Cache
X-Version
AMF-Ver
Website-Info
X-Varnish-IP
X-HOSTNAME
X-Response-Time
Server-Info
X-Engine
Accept-Charset
X-Blog
X-Session-Reinit
X-Track
X-Stale
NODE
X-Art-Request-Id
SN
Surrogate-Control
Filter-Revision
Machine
X-Speed-Cache-Key
MJ12bot
Cache
X-Speed-Cache
SEOMOZ
X-Swift-SaveTime
X-Swift-CacheTime
Ngpass-Vcall
X-Trace-Cache
X-Microcachable
Srv
X-Whom
X-ServerName
X-Cocoon-Version
X-Highwire-RequestId
Upgrade
X-Highwire-SessionId
X-FIRSTBase
X-FW
X-Varnish-Age
Origin
Proxy-Connection
ServerID
VAR-Cache
X-App-Start
X-Pangea-Version
X-Varnish-Server
Powered
X-Tumblr-Pixel-6
X-ACMCache
X-S
X-BackendServer
X-Amz-Meta-S3cmd-Attrs
Id
X-Time
X-Cache-TTL
X-Cache-Rule
Req-Id
X-Connection-Hash
X-Transaction
X-App
X-Twitter-Response-Tags
Ms
A-Powered-By
X-GeoIP-Country-Name
X-App-Status
X-GeoIP-Country-Code
X-Distil-CS
Server-Name
X-MJ-Upstream-Addr
X-Provisioner-Version
X-Srv
X-Gamma-Serve
X-Domain-Checked
Qs-Cache
X-Trace
Time
X-CHSN
CT
X-Varnish-Cache-Hits
X-Varnish-Beresp-Ttl
X-Varnish-Beresp-Status
X-Orig-Vary
X-Varnish-Beresp-Grace
X-MiniProfiler-Ids
NetMindSessionID
X-Source-Host
X-Varnish-Object-Age
X-Country-Code
X-Geo-IP
MIH-PUBLIC-IDENTIFIER
X-ID
MIH-CLIENT-FARM
MIH-PLATFORM
X-Cdn
Dispatcher
X-Machine-Name
X-Ttl
X-LIGHTHTTP-PCDID
X-Secret
X-Adobe-Content
X-MJ-Serve-Req-Time
X-Microcache-Status
X-Sys-Req-ID
X-Device-Type
XDomainRequestAllowed
X-Server-ID
Warning
X-SRV
X-GeoIP
X-Cache-Operation
X-Cluster-Node
Webluker-Edge
X-Vtex-Processado-Em
Location
Beyond-Iis
X-FreeTag-Count
X-CacheHits
MW-Webserver
-GCR
Fpc-Cache-Id
Server2
X-UPSTREAM
Buuteeq-Source
X-ServerCache-Info
X-Directory-Script
X-Stage
X-Translation
X-Frontend
X-Bettercache-Proxy
X-Vtex-Remote-Cache
SS
X-Cached-Status
X-Cache-Action
LBVIS
CommunityServer
X-Src-Webcache
X-Vhost
X-AOL-SNH
X-Object-Type
No
NLCacheNote
X-Object-Id
X-Atraveo-Varnish-Server-Id
X-Atraveo-From-Varnish-Cache
X-Atraveo-Cache-Control
SVR
X-Atraveo-TTL
X-Atraveo-NC
Be-Va
Be-Ip
X-Header
X-Vtex-Processed-At
Content-MD5
SiteName
X-VTEX-Janus-Router-Backend-App
X-Powered-By-VTEX-Janus-Edge
X-Powered-By-VTEX-Janus-Router
X-VTEX-Cache-Status-Janus-ApiCache
X-VTEX-Cache-Status-Janus-Edge
From
X-Cache-Age
X-Recruiting
X-Powered-By-VTEX-Janus-ApiCache
X-TempDebug
X-Request-Locale
X-Accelerated-By
X-Wily-Servlet
X-Old-Content-Length
X-N
PageSpeedFilters
X-Resolver-IP
X-Server-Id
X-Wily-Info
UniqueName
Rt-Fastcgi-Cache
X-Grid-Server
X-Developer
X-Powered-By-Server
Ngpass-All
X-LI-UUID
LFY
X-Expires
X-Li-Pop
SFY
X-Amz-Id-1
X-Id
Content-Transfer-Encoding
X-Trace-App
Content-Security-Policy-Report-Only
X-Block
RATING
Worker
X-Jphone-Copyright
X-Dev
X-Li-Fabric
X-Cms-Mode
Backend-Name-Original
X-Channel-Maxage
X-Source-ID
MirrorName
X-FS-UUID
X-Force
X-Ar-Debug
X-PRAM
Cteonnt-Length
X-Venda-Hitid
Backend
X-ORACLE-DMS-ECID
Apache
X-UD-Loopcounter
X-UD-REMOTE-ADDR
X-UD-Target
X-Origin
X-ManagedFusion-Rewriter-Version
X-Rewritten-By
X-Turbo-Control
X-Cache-Lifetime
X-REDIRECTSERVER
X-LB
X-Enhanced-By
Nodo
Hamster
Front-End-Https
X-Content-Age
X-Frames-Options
X-Router-Backend
X-ChromeLogger-Data
X-Router
X-UseReverse-Proxy
X-Varnish-ID
Pool
X-Real-Server
X-PoweredBy
X-Origin-Id
X-Webapp
ScoreTracker
X-Info
X-Location-Id
Front
X-Cache-Ttl
X-Gannett-Site-Version
X-DeliveryServer
BM-Cache-Node
BM-Cache-Key
LBC
X-Hash
Accept-Language
Ram
X-Varnish-Action
X-GC-Write
X-Uid
Noq
X-Oracle-DMS-ECID
X-GC-Read
Jobb.Passal.Se
Jobb.Assistentpoolen.Se
X-SSL
X-Do-Not-Hack
Jobb.Gil.Se
X-Country
X-T3CacheTags
X-DefendeR-Runtime
X-GC-App
Author
X-Vhost-ID
X-Route
Compression-Control
X-Varnish-Cache-Local
X-Hosting-Env
Access-Control-Expose-Headers
Fastcgi-Cache
Ttl
SIP
Web-Server
Open.Jobgate.Se
X-Via-Kemp
Cpu
X-Varnish-Device
X-Powered
X-ASTRO-REWRITE
X-B2f-Not-Route
X-Goog-Hash
X-PvInfo
X-T3CacheInfo
XX
Il-Cl
Ksid
X-CacheServer
X-Actindo-RS
Cluster-ID
SRV
Rt-Server
X-ATM-RServer
X-Cache-Route
No-Cookie
X-Response
X-Kirra-SiteId
X-ATM-RTime
X-Cache-On
X-Empowered-By
X-DTC
Www.Mabracertifiering.Se
Www.Myjob.Se
7e-Page-Cache
Www.Mirrorgate.Se
CDN
Test.Executivepeople.Se
P3P:CP
Provided-Host
X-Geo-IP-Metro
X-Geo-IPV
X-Server-By
X-Geo-IP-Region
X-Server-IP
Bs-Header
Content-Instance
X-WR-MODIFICATION
Provider
OriginServer
X-Geo-IP-Country
X-Garden-Version
X-NginX-Server
At-Isb
X-Monstercache-Timeout
PageSpeed
X-Phpwcms-Release
X-Varnish-Count
Atp-Isdpp
X-WP
X-Phpwcms-Page-Processed-In
X-Varnish-HitMiss
At-Shoptype
X-Catalyst
X-B2f-Cache-Load
X-ESI
X-Hit-Cache
X-Pagename
Cache-Ctrol
BALANCEDTO
Cneonction
X-FCMS-Cache
X-Varnish-URL
X-T3Cache
AV1080
X-SV
X-Farm-Server
X-Nginx-Backend
X-Varnish-Cache-Server
X-Vivastreet
X-OPNET-Transaction-Trace
X-Seen-By
X-NGINX-CACHED
X-NGINX-CACHED-AT
X-Vivastreet-KiwiiPage
X-PM-ID
X-MobileDetected
X-Hstore
X-Uplex
X-Varnish-Debug-Pool-Fetch
X-Varnish-Debug-Pool-Recv
X-Hrouter
X-EdgeRouter
X-ACCELERATE
X-Nginx-Host
X-Accel-Expires
X-TempoPesquisa
X-Internal-IP
X-Max-Age
X-Varnish-Restarts
X-FFX-B
X-ESI-Enable
X-XHR-Current-Location
X-Nginx-Cache
X-Hostingcenter
Cmstype
X-Magento-Action
X-Nginx-Server
X-Yottaa-Optimizations
X-Yottaa-Metrics
X-Web-Node
WP-AdvCache-MemCached
X-Magento-Lifetime
WEBO
Cmsid
X-SilverStripe-Cache
Aoestatic
No-Cache
Ec
Svr
X-UserAgent
CC-UP
Progma
CC-CACHE
X-App-Server
User-Cache-Control
NnCoection
SLB
X-Host-Url
X-ProcessESI
X-Cache-Backend
AppDynamics-BT
X-MCB-Server
X-Drupal-Cache-Tags
X-RemovedCookies
Copyright
ServerIP
X-Locale
X-GSL-Server
HAVer
X-7d-Traceid
Publisher
X-Purge-Level
X-Binarysec-Via
X-7d-Version
X-7dig
X-LAvg
INCOMING-TIME
X-Flow-Powered
X-Life
X-SmugMug-Hiring
Acdc-Web
X-Dynatrace
X-TTFB
X-TTFB-L
HCVer
X-Remote-Addr
Head
X-Hit
X-Cache-Set
X-SmugMug-Values
Smug-Env
X-TLServer
X-Server-Instance
Server-N
X-NID
ExecutionTime
X-Allow-Redis
X-Lautre-Frontal
X-Cache-Key
X-Upstream
X-Framework
X-VarnCache
SV-Duration
X-TISSERVER
X-DELIVERYSERVER
ServerId
BM-Cache-Status
CP
B-Powered-By
X-Debug
X-Header-Set-Id
Xc
X-Generation-Time
X-Distributed-By
X-V
X-Flex-Tags
Secured
X-Distributor
X-S-Misc
X-Client-IP
Xonnection
X-Caching-Rule-Id
X-Node-Name
X-WorkerInstancename
X-Flex-Community
X-Flex-Lastmod
X-Flex-Lang
X-Flex-Evstart
X-Flex-Evend
X-Flex-Tag
ORIGIN
X-Varnish-Cookie-Debug
X-D-Time
Tracker
X-Edge-Location
Ozcache
After
X-MSEdge-Ref
Version
ProxiaInstanceId
Web-Head
F-In-Cache
X-Haiku
X-Varnish-Debug-Age
X-GLaDOS
X-Varnish-Debug-Hits
X-RSS-CACHE-STATUS
X-Powered-Developer
X-Hc-Host
X-SERVERID
X-PBY
X-Status
X-IDS-WS
Pool-Info
Server-Optimized-By
X-CMS
Sid
Tpt.Renderer
Backend-Host
X-App-Container
ServerConfigManager.WebBugTracker
Render
X-RE-Ref
ExecuteNonQuerySQLParam
IsFullSiteRequest
X-Nucleus-Cache
X-Wm-VIP
X-Wm-1
UNIQUE-ID
X-AISO-Cache
X-CacheTTL
Mark
X-AISO-Server
Tpt.Renderer1
X-WLD-LB
X-Varnish-Hit
X-Varnish-Currency
X-Time-Spent
POOL
X-Wikidot-Static-Cache
X-Client-Addr
X-Varnish-Debug-Varnish-TTL-Set-From-Server
X-WA-Info
X-Varnish-Ttl
X-Would-Your-GrandPa-Wait
X-Artvisual-Server
X-IP-Address
X-Your-GrandPa-Would-Wait
X-Wikidot-Backend
Accept
X-SERVER-ID
X-Forwarded-Proto
X-Page-Generated-At
X-TTL-Age
X-Continum-Server
X-JSON-API-LATENCY
Http
X-Unbounce-VisitorID
X-Unbounce-Variant
X-DB-Content-Length
X-DC-Origin-IP
X-SDE-Name
Test
X-Stackable-Node
X-Bcwwwid
X-Confluence-Request-Time
X-Fett
X-Abuse
X-ELC-Checkpoint4
OGHopCount
MachineName
Before
X-Ratelimit
X-Unbounce-PageId
X-Page-Generation-Time
X-Server-Generated
Disaptch-Cache-Rule
X-V-I-TTL
X-Monstercache-Hash
X-V-Outer
X-NginX-Cache
X-Monstercache-Host
X-Created
Last-Published
X-DEBUG
X-Monstercache
Redirect
X-V-TTL
X-Req-Url
X-Req-Host
X-VarnPar2
X-Gondor-Server
X-Svr-Id
X-Varnish-Hashed-On
X-Benchmark-Cache
X-Benchmark-Db
X-Benchmark-Sphinx
X-Benchmark-Sphinx-Count
Tempo
X-Serendipity-InterfaceLangSource
X-Backend-Ip
X-Feed
X-Original-IP
X-Serendipity-InterfaceLang
X-Benchmark-Total
XDisk
User-Updated-At
X-Client-Vid
X-EPiphany-Vid
X-N-ViewType
User-Id
X-USERNAME
CacheControlHeader
Esi-Enabled
AppServer
X-HOSTTYPE
Portlet.Expiration-Cache
X-Pixelsilk-Version
X-DSMX-Render-MS
X-DSMX-Rewrite-MS
X-Server-Node
DBG-HTTPHOST
Nginx-Cache
Foglight-Request-UUID
X-GeoIP-Country
X-RequesterIP
X-SATserver
X-Back
DBG-TargetHost
DBG-Timestamp
Content
X-Cluster
X-Edge-IP
X-Pixelsilk-Server
X-Pb-Mii
X-Mii-Cache-Hit
Www.Aujourdhui.Com
X-ATP-Server
X-Device-Group
Nitro-Cache
X-Jcms-Ajax-Id
'Ibf5scheme'
WebDevSrc
Ibf5scheme
X-Webstats-RespID
X-WAP
X-Url-Store
X-Cluster-Host
X-Var-Hash
MGIT
X-ACLR-Version
X-Req-Counter
X-T
X-Time-Microsecs
X-Ocache
X-B
SBMCLOUD
X-Author
X-Config-By
Server-IP
TP-Cache
TP-L2-Cache
X-AccessDev
S-Cnection
IsMobile
AcceptLangage
CountryCode
X-VarnPar1
X-Backend-Status
X-Checkout
X-PS-MURDOCK-CASE-NORMALIZATION
X-PS-MURDOCK-ORIG-FILEEXT
X-PS-MURDOCK-ORIG-PROTOCOL
X-Hosting
X-Dokk-PortalId
X-Compressed-By
X-Cookie-Store
BE
X-Symfony-Cache
Prama
X-FarmId
SL-NOREWRITE-REDIRECTS
Hotelbookingid
X-Mod-Oboe-PS
X-Pagecache
Modurl
Modhost
X-Snapsis-PageBlaster
Initialhost
X-Rack-Cors
X-ServerId
Modcookie
X-ESI-Processing
Ez
Hej
Xforwardhost
Content-Cache
X-Backend-Name
X-Backend-IP
Sigma
X-Revision
Mime-Version
WP-Cache
X-CACHE-TTL
X-Optimization
X-Request-Received
D
X-Instart-Request-ID
X-Src-Loadbalancer
X-Request-Processing-Time
X-Full-URL
WFE
X-Dynatrace-Js-Agent
OutputRewritten
X-Varnish-Hostname
Language
Keywords
X-Debug-Token
X-Cached-From
Cached
X-AVG-REWRITE
X-Download-Options
SobiPro
Description
X-AVG
Railo-Version
X-Lang
X-Czt
Public-Key-Pins
W
X-Ec-Custom-Error
X-FRONT-TTL
X-VG-WebCache
X-Trans-Id
X-Mobile
X-Site
X-Timestamp
X-Powered-By-Yqk
X-ProxyInstancename
X-Planisys-CDN-Cache
X-Planisys-CDN-Rules
X-Varnish-Mode
X-Obvious-Tid
X-Obvious-Info
X-Yqk-Set
X-Test
MASTERWEBLET
X-Dynamic
X-Brought-To-You-By
MageStack-Area
MageStack-Cache
MageStack-Cache-Hits
X-HW
B2C-HG-008
X-JAVAX-PORTLET-FACES-NAMESPACED-RESPONSE
X-Process-Time
X-Varnish-Set-Cookie
MageStack-Cache-Lifetime
MageStack-Cache-Status
MageStack-Response-Ttl
MageStack-Tag
Requested-Host
MageStack-PageSpeed
MageStack-Loadbalancer
MageStack-Cacheable
MageStack-Config
MageStack-Debug
Countrycode
X-BIN
X-VAR-VCacheCount
Noahs-Classifieds
X-Environment
X-VAR-VCache
X-VAR-Url
X-VAR-Server
X-VAR-TTL
X-Job-Offer
X-Cluster-ID
X-Instance
Tracecode
X-Aberdeen-Cache
X-HeBS-Cache-Status
X-Aberdeen-Site
X-CCM
X-Content-Parsed-By
X-VAR-RequestType
X-VAR-Referer
X-SeschatLayout
X-SeschatRedID
X-SeschatTemplateID
X-SeschatDID
X-Seschat-URL
X-Varnish-Max-Age
X-ServedByHost
X-VAR-Apache
X-VAR-Backend
X-VAR-Mobile
X-VAR-PageSpeed
X-VAR-Logic
X-VAR-Host
X-VAR-BackendHealthy
X-VAR-Hash
Title
Mobiquo-Is-Login
X-PHP-Cache
SharePointError
Apple-Itunes-App
X-Papaya-Cache
X-Papaya-Gzip
X-Cache-Control
X-Cache-Via
X-Cache-Host
If-Modified-Since
X-MSU-SOURCE
X-SiteConInfo
X-MidCOM-Meta-Cache
X-TAG
X-HITS
X-RNDPAGE
DB-Nickname
X-Apublish-Id
X-Wix-Request-Id
X-Wix-Route-ID
CACHED-RESPONSE
X-Wix-Renderer-Server
Fw-Via
HTTP
X-Debug-Serve
PS-CapabilityList
Rt-Proxy-Cache
Http.Set-Cookie
ID
X-ErrorPage
X-CMS-Server
X-B2f-Cache-NotFromUrl
X-CacheStore
Robots