X-Frame-Options HTTP response header


X-Frame-Options response header



X-Frame-Options statistics


Highest ranking web sitetwitter.com


Common X-Frame-Options header values


Header name Header value Occurence
X-Frame-OptionsSAMEORIGIN81.5%
X-Frame-Optionsdeny16.2%
X-Frame-OptionsALLOW0.8%
X-Frame-OptionsALLOWALL0.4%
X-Frame-OptionsSAMEORIGIN, SAMEORIGIN0.2%
X-Frame-OptionsALLOW-FROM https://pay.amazon.com0.1%
X-Frame-OptionsALLOW-FROM my.readymag.com0.1%
X-Frame-OptionsALLOW-FROM blogs.cisco.com gblogs.cisco.com explore.cisco.com transform.cisco.com ciscopartners.look0.1%
X-Frame-OptionsSAMEORIGIN ALLOW-FROM http://info.barchart.com0.1%
X-Frame-Optionsallow-from *.salesforce.com *.force.com0.1%
X-Frame-OptionsSAMEORIGN0.0%
X-Frame-OptionsSAMEORIGIN, SAMEORIGIN, SAMEORIGIN, SAMEORIGIN, SAMEORIGIN0.0%
X-Frame-OptionsSAMEORIGIN, SAMEORIGIN, SAMEORIGIN, SAMEORIGIN0.0%
X-Frame-OptionsSAMEORIGIN, ALLOW-FROM https://sap.lookbookhq.com, ALLOW-FROM http://sap.lookbookhq.com0.0%
X-Frame-OptionsSAMEORIGIN, ALLOW-FROM https://hubhopper.com/0.0%
X-Frame-Optionshttps://www.callfire.com0.0%
X-Frame-Optionscrossorigin0.0%
X-Frame-OptionsALLOW-FROM securityscorecard.pathfactory.com0.0%
X-Frame-OptionsALLOW-FROM https://ads.twitter.com/0.0%
X-Frame-OptionsALLOW-FROM couchbase.lookbookhq.com0.0%
X-Frame-OptionsAllow-From *.usbank.com0.0%
X-Frame-Options: sameorigin0.0%
X-Frame-OptionsALLOW-FROM https://jobfinder.amazon.com/0.0%
X-Frame-OptionsALLOW-FROM https://analytics.google.com0.0%
X-Frame-OptionsALLOW-FROM https://www.apply2.pnc.com/0.0%
X-Frame-OptionsALLOW-FROM https://slack.com/0.0%
X-Frame-OptionsALLOW-FROM https://redhat.lookbookhq.com0.0%
X-Frame-OptionsALLOW-FROM https://realestatecenter.bankofamerica.com/0.0%
X-Frame-Optionsallow-from https://www.qualified.com0.0%
X-Frame-OptionsALLOW-FROM https://www.qa.usfinancialcapability.org/*0.0%
X-Frame-OptionsALLOW-FROM https://www.ibm.com/0.0%
X-Frame-Optionsallow-from https://www.freshworks.com0.0%
X-Frame-OptionsALLOW-FROM https://www.deutsches-seniorenportal.de0.0%
X-Frame-Optionsallow-from https://amc.rightanswers.com/, SAMEORIGIN0.0%


Top domains


twitter.comtwitter.comwww.facebook.comwww.facebook.com
plus.google.complus.google.comwww.youtube.comwww.youtube.com
www.google.comwww.google.comwww.linkedin.comwww.linkedin.com
www.instagram.comwww.instagram.coml.facebook.coml.facebook.com
messenger.commessenger.comdevelopers.facebook.comdevelopers.facebook.com


Usage by top level domain (TLD)


Header nameTop level domainOccurence
X-Frame-Optionscom69.7%
X-Frame-Optionsorg13.1%
X-Frame-Optionsnet2.7%
X-Frame-Optionsca1.2%
X-Frame-Optionsde1.0%
X-Frame-Optionsuk0.8%
X-Frame-Optionsbe0.8%
X-Frame-Optionsru0.8%
X-Frame-Optionsfr0.8%
X-Frame-Optionsau0.7%