indexo.dev

acmewhistles.co.uk

.uk crawl

First seen 2026-04-28 · Last seen 2026-05-18 · ok HTTP/1.1 200 7985 ms crawled 2026-05-05

US · 172.67.72.32 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
ACME Whistles | Est. 1870
Description
ACME Whistles have been manufacturing and selling many different types of whistles from dog whistles to football whistles and many more since 1870.
Language
en
Canonical
https://www.acmewhistles.co.uk

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • www.googletagmanager.com×3
  • apis.google.com×1
  • cdn.salesfire.co.uk×1
  • fonts.googleapis.com×1
  • js.stripe.com×1
  • register.feefo.com×1
  • sos-de-fra-1.exo.io×1
  • www.facebook.com×1

Social

Contact

Phone

Registration

Registrar
123-Reg Limited t/a 123-reg
Created
1996-12-03
Expires
2026-12-03 196 days left
Updated
2024-12-04
Name servers
  • melissa.ns.cloudflare.com.
  • nitin.ns.cloudflare.com.

DNS records live

NS
  • melissa.ns.cloudflare.com
  • nitin.ns.cloudflare.com
MX
  • 0 mta01.scanscope.net
  • 10 mail1.scanscope.net
  • 20 mail2.scanscope.net
  • 30 mail3.scanscope.net
TXT
  • ad1i9kirk9852ajp32j57rlhgb
  • salesfire-site-verification=A5vJS5JpaAbDX9PkktTW6G5StTfCMkz3
  • v=spf1 include:spf.protection.outlook.com include:scanscope.net ip4:149.86.103.58 ip4:149.86.103.59 ~all
Verified for
  • Google
  • Microsoft 365

Certificate (current)

WE1
from 2026-04-03 to 2026-07-02
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.acmewhistles.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src fonts.googleapis.com fonts.gstatic.com *.gstatic.com 'self' data: *.doubleclick.net *.facebook.com *.acmewhistles.co.uk *.salesfire.co.uk *.stripe.com *.google.com *.sagepay.com *.opayo.eu.elavon.com maxcdn.bootstrapcdn.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.stripe.com *.google.com *.sagepay.com *.opayo.eu.elavon.com *.arcot.com *.rsa3dsauth.co.uk *.rsa3dsauth.com *.boc.cn *.afs.com.bh *.enfuce.com *.cardcenter.ch *.nexigroup.com *.pluscard.de *.qiib.com.qa *.paylife.at *.redsys.es *.3dsecure.no *.modirum.com *.edb.com *.viseca.ch *.apata.io *.capitalone.com *.dnp-cdms.jp *.revolut.com *.bankserv.co.za *.swisscard.ch *.six-group.com *.marqeta.com *.cardinalcommerce.com *.wlp-acs.com *.imbank.com *.tsys.co.uk *.sia.eu *.garant
strict-transport-security
max-age=31536000; includeSubDomains

Links to (4)

Linked from (1)