allwyn.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Next.js
- Analytics
-
- Cloudflare Insights
- Google Tag Manager
Third-party hosts loaded (2)
- static.cloudflareinsights.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2000-12-03
- Expires
- 2033-12-03 2754 days left
- Updated
- 2024-04-15
- Name servers
-
- ximena.ns.cloudflare.com
- zeus.ns.cloudflare.com
DNS records live
- NS
-
- ximena.ns.cloudflare.com
- zeus.ns.cloudflare.com
- MX
-
- 0 allwyn-com.mail.protection.outlook.com
- TXT
-
Show 14 TXT records
cywetadns-domain-verification=4a7d2b4ffe3890f93e7dc6e063d68d45docusign=0ffd269e-9641-478f-8ab0-195c9986e27fgoogle-site-verification=8dmmIxReKKKYGWCGQ1VGZln6rWPNnKJpRDiET7eafdMgoogle-site-verification=_gCDDW1sw_Ebedb2umYWnnOjKh9pEow8jxfXr5jjl7Mmandrill_verify.F4tQaVKw5F2JDXV4oAPKFgteamviewer-sso-verification=9a3f97cd368c4056a97a072ac5ac6f2dveremark-domain-verification-sh57aa=pjOcCwFsEhulYhtQATZxmQBqQMS=ms21461762MS=ms51017241Paloaltonetworks-site-verification=137a205bd3a1afc58dc2c56190167271cc9d4ff7202ffcd4d0bb0513da92d107ZOOM_verify_Q6GFut2fgZPxFYW07NJgpWapple-domain-verification=eyMhlrgkPQWaa5oTatlassian-domain-verification=9fObCW6CgVWAWVDqlBGdIkmG062Dqz9F5elCkiacvPD6Scr5OMpVDKTkRQpKmKI6atlassian-sending-domain-verification=1354b11d-5e08-48cf-9e48-155fc9c19a3c
Email authentication strong
- SPF
-
v=spf1 a:mail.kkcg.net ip4:80.80.227.119 ip4:31.30.111.65 ip4:31.30.111.75 ip4:30.31.25.87 ip4:54.240.50.109 include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine;policy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtReZcIeLFoM6fkvM6Jn2ssYtzuz7EVpx8LZSODTumkTWAMz+Yyr0+TN+o45B7tr/CkmN2SxGGMDupg…
selectors probed - selector1:
Certificate (current)
WE1
Expires in 35 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer- x-frame-options
deny- permissions-policy
accelerometer=(self "https://www.youtube.com"), autoplay=(self "https://www.youtube.com"), camera=(), display-capture=(), encrypted-media=(self "https://www.youtube.com"), fullscreen=(self "https://www.youtube.com"), geolocation=(self), gyroscope=(self "https://www.youtube.com"), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self "https://www.youtube.com"), publickey-credentials-get=(), usb=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self';connect-src 'self' https://sgtm.allwyn.com https://www.googletagmanager.com *.elfsight.com *.googlesyndication.com *.google-analytics.com *.cookiebot.com *.google.com *.doubleclick.net *.facebook.com https://analytics.tiktok.com https://*.linkedin.com;font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com data:;style-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://fonts.googleapis.com;img-src 'self' https://fonts.gstatic.com https://www.googletagmanager.com *.elfsightcdn.com *.googlesyndication.com *.google-analytics.com https://cdn.allwyn.com https://i.ytimg.com *.cookiebot.com *.facebook.com https://*.linkedin.com data:;script-src 'self' 'unsafe-inline' https://static.elfsight.com *.google-analytics.com https://www.googletagmanager.com https://www.google.com https://www.gstatic.com *.cookiebot.com https://www.youtube.com https://connect.facebook.net https://analytics.tiktok.com https://*.licdn.com;frame-src https://www.facebook.c- strict-transport-security
max-age=15552000; includeSubDomains; preload- cross-origin-opener-policy
same-origin- cross-origin-resource-policy
same-origin