3step.uk

.uk crawl

First seen 2026-04-24 · Last seen 2026-05-15 · ok HTTP/1.1 200 992 ms crawled 2026-05-18

US · 15.197.225.128 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Home
Language: en-US

Open Graph

url: https://www.3step.uk/
title: Home

Technology

Server: ESF

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×2
www.gstatic.com×2
apis.google.com×1
ssl.gstatic.com×1

Registration

Registrar

GoDaddy.com, LLC.

Created

2024-03-03

Expires

2027-03-03 286 days left

Updated

2026-03-06

Name servers

ns77.domaincontrol.com.
ns78.domaincontrol.com.

DNS records live

NS

ns77.domaincontrol.com
ns78.domaincontrol.com

MX

10 mx01.mail.icloud.com
10 mx02.mail.icloud.com

TXT

apple-domain=QNyFaVU7vYThvNVj

Email authentication weak

SPF: v=spf1 include:_spf.mlsend.com include:icloud.com ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

GoDaddy TLS Intermediate CA DV - R1v1

from 2026-03-26 to 2026-10-10

Expires in 143 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.3step.uk

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'report-sample' 'nonce-k9OUk07ulwrJ53iRa41exg' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: same-site

Links to (1)

google.com×2

Linked from (1)

emmasantenatal.com×2