HTTP/1.1 301 Moved Permanently
Date: Wed, 25 Oct 2023 11:45:37 GMT
Set-Cookie: Navajo=3jbohhUpMH2WJdHSVv5nwVf3/k0F9p0iBX+fKrqI1lU7FkbSMTSN5v8hJrJzt5FI7ayMLMM3TzI-; Path=/; HttpOnly
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 0
Location: https://www.credit-suisse.com/
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' ; style-src 'self' 'unsafe-inline'
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' ; style-src 'self' 'unsafe-inline'
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
HTTP/2 301
server: Apache
content-length: 0
x-varnish: 119441133
location: https://www.credit-suisse.com/index.html
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubDomains
referrer-policy: no-referrer-when-downgrade
date: Wed, 25 Oct 2023 11:45:37 GMT
set-cookie: ClientTLSVersion=tls1.3; path=/; SameSite=Strict
server-timing: cdn-cache; desc=REVALIDATE
server-timing: edge; dur=93
server-timing: origin; dur=20
server-timing: ak_p; desc="1698234337191_389431495_839785535_11289_562_38_7_15";dur=1
HTTP/2 302
server: Apache
content-length: 0
content-security-policy: default-src 'none'; base-uri 'none'; connect-src 'self' data: *.credit-suisse.com *.oribi.io *.frontify.com *.hedani.net *.decibelinsight.net *.demdex.net *.doubleclick.net *.inbenta.com *.inbenta.io *.knowledgevision.com *.omtrdc.net *.qualtrics.com www.google-analytics.com wss://cdn.decibelinsight.net wss://collection.decibelinsight.net *.facebook.com *.googletagmanager.com soundcloud.com cdn.ampproject.org *.bing.com *.go-mpulse.net *.akstat.io *.akamaihd.net *.cookielaw.org *.onetrust.com *.pinterest.com webexapis.com *.wbx2.com *.ciscospark.com wss://*.ciscospark.com analytics.tiktok.com *.teads.tv *.googleapis.com edge.adobedc.net;font-src 'self' 'unsafe-inline' data: *.credit-suisse.com *.hedani.net *.inbenta.com fonts.gstatic.com *.anychart.com *.inbenta.io gateway.zscloud.net *.qumucloud.com; frame-ancestors 'self' *.students.ch *.rowini.net *.ch.hedani.net content-uat.csintra.net content.csintra.net *.credit-suisse.com *.hedani.net *.adobedtm.com *.abusizz.ch *.maglr.com; frame-src 'self' blob: *.adobedtm.com *.spotify.com *.credit-suisse.com *.hedani.net *.doubleclick.net *.facebook.com *.facebook.net *.inbenta.com *.knowledgevision.com *.omtrdc.net *.qq.com *.youtube.com *.youtube-nocookie.com creditsuisse.demdex.net maps.gstatic.com wl.fundsquare.net w.soundcloud.com *.snapchat.com *.qualtrics.com *.3vrooms.app dev.3volutions.ch *.ceros.com *.swisscom.ch video.csintra.net beneal.com *.apacwebinar.com *.qumucloud.com player.vimeo.com *.pinterest.com anchor.fm *.microad.jp analytics.tiktok.com bugcrowd.com; img-src 'self' data: *.hedani.net *frontify.com *.credit-suisse.com *.google-analytics.com *.doubleclick.net *.google.com *.google.ch t.co *.quantserve.com *.everesttech.net *.demdex.net *.youtube.com *.facebook.com *.facebook.net *.inbenta.com maps.gstatic.com maps.googleapis.com *.linkedin.com *.qualtrics.com *.gstatic.com *.inbenta.io *.mathtag.com *.bing.com gateway.zscloud.net *.googletagmanager.com *.glassdoor.com *.cookielaw.org *.qq.com *.adsymptotic.com *.pinterest.com *.teads.tv *.microad.jp b97.yahoo.co.jp b91.yahoo.co.jp analytics.tiktok.com; object-src 'self' blob: *.qq.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.adnxs.com *.adobedtm.com *.ads-twitter.com cdn.ampproject.org *.anychart.com *.credit-suisse.com *.hedani.net *.everesttech.net *.facebook.net *.forms.credit-suisse.com *.google.ch *.google-analytics.com *.googleapis.com *.googletagmanager.com *.inbenta.com *.inbenta.io *.jquery.com *.knowledgevision.com *.licdn.com *.linkedin.com *.qualtrics.com *.twitter.com *.youtube.com *.ytimg.com maps.google.com tagmanager.google.com sc-static.net *.googleadservices.com googleads.g.doubleclick.net *.ampproject.org *.mathtag.com *.bing.com gateway.zscloud.net *.go-mpulse.net *.akstat.io *.akamaihd.net *.ceros.com *.cookielaw.org *.qq.com *.qumucloud.com *.pinimg.com *.teads.tv *.microad.jp s.yimg.jp b97.yahoo.co.jp b91.yahoo.co.jp analytics.tiktok.com bugcrowd.com *.bugcrowdusercontent.com tr.snapchat.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.hedani.net *.inbenta.com fonts.googleapis.com tagmanager.google.com *.anychart.com *.inbenta.io gateway.zscloud.net analytics.tiktok.com *.teads.tv; style-src-elem 'self' 'unsafe-inline' data: *.credit-suisse.com *.inbenta.com *.inbenta.io; manifest-src 'self' data: *.credit-suisse.com;
x-content-type-options: nosniff
access-control-allow-origin: *
x-xss-protection: 1; mode=block
location: https://www.credit-suisse.com/mvc.do/rootRedirect
cache-control: max-age=1800, s-maxage=1800
x-varnish: 121308302
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
content-type: text/html
date: Wed, 25 Oct 2023 11:45:37 GMT
set-cookie: ClientCountryCode=US; path=/; secure; SameSite=Strict
set-cookie: ClientTLSVersion=tls1.3; path=/; SameSite=Strict
server-timing: cdn-cache; desc=HIT
server-timing: edge; dur=1
x-client-country-code: US
server-timing: ak_p; desc="1698234337316_389431495_839785842_18_781_34_0_15";dur=1
HTTP/2 302
server: Apache
content-length: 0
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
x-xss-protection: 1; mode=block
location: https://www.credit-suisse.com/us/en.html
x-frame-options: SAMEORIGIN
x-varnish: 101795045
x-cs-delivered: Wed, 25 Oct 2023 11:45:37 GMT
expires: Wed, 25 Oct 2023 11:45:37 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 25 Oct 2023 11:45:37 GMT
set-cookie: CsgBasePath=/us/; Path=/; Domain=.credit-suisse.com; Expires=Thu, 24-Oct-2024 11:45:37 GMT; Max-Age=31536000; Secure
set-cookie: ClientTLSVersion=tls1.3; path=/; SameSite=Strict
server-timing: cdn-cache; desc=MISS
server-timing: edge; dur=88
server-timing: origin; dur=27
server-timing: ak_p; desc="1698234337321_389431495_839785863_11552_677_30_0_15";dur=1
HTTP/2 200
server: Apache
x-ykey-aem:
content-security-policy: default-src 'none'; base-uri 'none'; connect-src 'self' data: *.credit-suisse.com *.oribi.io *.frontify.com *.hedani.net *.decibelinsight.net *.demdex.net *.doubleclick.net *.inbenta.com *.inbenta.io *.knowledgevision.com *.omtrdc.net *.qualtrics.com www.google-analytics.com wss://cdn.decibelinsight.net wss://collection.decibelinsight.net *.facebook.com *.googletagmanager.com soundcloud.com cdn.ampproject.org *.bing.com *.go-mpulse.net *.akstat.io *.akamaihd.net *.cookielaw.org *.onetrust.com *.pinterest.com webexapis.com *.wbx2.com *.ciscospark.com wss://*.ciscospark.com analytics.tiktok.com *.teads.tv *.googleapis.com edge.adobedc.net;font-src 'self' 'unsafe-inline' data: *.credit-suisse.com *.hedani.net *.inbenta.com fonts.gstatic.com *.anychart.com *.inbenta.io gateway.zscloud.net *.qumucloud.com; frame-ancestors 'self' *.students.ch *.rowini.net *.ch.hedani.net content-uat.csintra.net content.csintra.net *.credit-suisse.com *.hedani.net *.adobedtm.com *.abusizz.ch *.maglr.com; frame-src 'self' blob: *.adobedtm.com *.spotify.com *.credit-suisse.com *.hedani.net *.doubleclick.net *.facebook.com *.facebook.net *.inbenta.com *.knowledgevision.com *.omtrdc.net *.qq.com *.youtube.com *.youtube-nocookie.com creditsuisse.demdex.net maps.gstatic.com wl.fundsquare.net w.soundcloud.com *.snapchat.com *.qualtrics.com *.3vrooms.app dev.3volutions.ch *.ceros.com *.swisscom.ch video.csintra.net beneal.com *.apacwebinar.com *.qumucloud.com player.vimeo.com *.pinterest.com anchor.fm *.microad.jp analytics.tiktok.com bugcrowd.com; img-src 'self' data: *.hedani.net *frontify.com *.credit-suisse.com *.google-analytics.com *.doubleclick.net *.google.com *.google.ch t.co *.quantserve.com *.everesttech.net *.demdex.net *.youtube.com *.facebook.com *.facebook.net *.inbenta.com maps.gstatic.com maps.googleapis.com *.linkedin.com *.qualtrics.com *.gstatic.com *.inbenta.io *.mathtag.com *.bing.com gateway.zscloud.net *.googletagmanager.com *.glassdoor.com *.cookielaw.org *.qq.com *.adsymptotic.com *.pinterest.com *.teads.tv *.microad.jp b97.yahoo.co.jp b91.yahoo.co.jp analytics.tiktok.com; object-src 'self' blob: *.qq.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.adnxs.com *.adobedtm.com *.ads-twitter.com cdn.ampproject.org *.anychart.com *.credit-suisse.com *.hedani.net *.everesttech.net *.facebook.net *.forms.credit-suisse.com *.google.ch *.google-analytics.com *.googleapis.com *.googletagmanager.com *.inbenta.com *.inbenta.io *.jquery.com *.knowledgevision.com *.licdn.com *.linkedin.com *.qualtrics.com *.twitter.com *.youtube.com *.ytimg.com maps.google.com tagmanager.google.com sc-static.net *.googleadservices.com googleads.g.doubleclick.net *.ampproject.org *.mathtag.com *.bing.com gateway.zscloud.net *.go-mpulse.net *.akstat.io *.akamaihd.net *.ceros.com *.cookielaw.org *.qq.com *.qumucloud.com *.pinimg.com *.teads.tv *.microad.jp s.yimg.jp b97.yahoo.co.jp b91.yahoo.co.jp analytics.tiktok.com bugcrowd.com *.bugcrowdusercontent.com tr.snapchat.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.hedani.net *.inbenta.com fonts.googleapis.com tagmanager.google.com *.anychart.com *.inbenta.io gateway.zscloud.net analytics.tiktok.com *.teads.tv; style-src-elem 'self' 'unsafe-inline' data: *.credit-suisse.com *.inbenta.com *.inbenta.io; manifest-src 'self' data: *.credit-suisse.com;
x-content-type-options: nosniff
access-control-allow-origin: *
x-xss-protection: 1; mode=block
ykey: PWP_PRD_YKEY_ALL,PWP_PRD_us%2Fen
etag: "1d0136abfb704cc0197d011745463fbf"
x-varnish: 104350325 106994081
cache-control: public, max-age=1800
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
content-type: text/html;charset=utf-8
x-akamai-transformed: 9 - 0 pmb=mRUM,1
date: Wed, 25 Oct 2023 11:45:37 GMT
set-cookie: ClientCountryCode=US; path=/; secure; SameSite=Strict
set-cookie: ClientTLSVersion=tls1.3; path=/; SameSite=Strict
server-timing: cdn-cache; desc=HIT
server-timing: edge; dur=1
x-client-country-code: US
server-timing: ak_p; desc="1698234337441_389431495_839786284_21_773_26_0_15";dur=1
|