allmetals.us

.us user

First seen 2026-05-17 · Last seen 2026-05-17 · ok HTTP/1.1 200 551 ms crawled 2026-05-17

US · 35.212.6.216 · AS15169 Google LLC

Reputation 87/100 weak security headers no dmarc policy

sector manufacturing type homepage

HTML metadata

Title

All Metals Industries

Language

en-US

Canonical

https://allmetals.us/

Feeds

Technology

Server: nginx
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (1)

fonts.googleapis.com×2

Social

Contact

Phone

1-800-654-6043

DNS records live

NS

ns1.bdm.microsoftonline.com
ns2.bdm.microsoftonline.com
ns3.bdm.microsoftonline.com
ns4.bdm.microsoftonline.com

MX

0 allmetals-us.mail.protection.outlook.com

TXT

mscid=LcdzoOhWoPaM+zg7M/pwHlWns3Utn4G71gSoyL+fJBzHLqtkdiNOX5XQWS8Xw2+D3I+ffw49R1W7Pz3MhLqBTw==

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2X1Q+GS1doaWDB5AjqCWZTx/sUvQ6SeVRLkldUlMxo4xU1Xc7qIlB0RC5JvE4BHv4WL5dy61VTqdVU…

selectors probed

Certificate (current)

R13

from 2026-05-07 to 2026-08-05

Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://allmetals.us/

present

x-content-type-options
permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options: nosniff

Links to (2)

gerbermetal.com×1
linkedin.com×1