indexo.dev

axaxl.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-17 · ok HTTP/1.1 200 2162 ms crawled 2026-05-07

US · 13.107.226.38 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Global Commercial Insurance and Reinsurance | AXA XL
Description
AXA XL is a leading provider of P&C global commercial insurance offering insurance and reinsurance to enterprises of every kind and size. AXA XL helps you take your business further.
Language
en
Canonical
https://axaxl.com
Translations
  • de
  • es
  • fr
  • it
  • pt

Open Graph

url
https://axaxl.com
title
AXAXL Home
description
AXA XL is a leading provider of P&C global commercial insurance offering insurance and reinsurance to enterprises of every kind and size. AXA XL helps you take your business further.

Technology

CDN
Azure Front Door

Third-party hosts loaded (1)

  • www.google.com×1

Social

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2018-04-24
Expires
2027-04-24 340 days left
Updated
2026-04-20
Name servers
  • udns1.cscdns.net
  • udns2.cscdns.uk

DNS records live

NS
  • udns1.cscdns.net
  • udns2.cscdns.uk
MX
  • 10 mxa-00181c02.gslb.pphosted.com
  • 10 mxb-00181c02.gslb.pphosted.com
TXT
Show 27 TXT records
  • ZOOM_verify_zStR2gzrgtqfjkpZVsBVUs
  • miro-verification=5f54a887c4cd0f815ff04bee3a1d5cc98fcddddb
  • mongodb-site-verification=Ma5PlEaQZkZJmcVGKiD00B9kLtcUIfzv
  • msfpkey=4e1xr6vh5sxa416irwsdgj2fo
  • 00DWr000001H8jl=1TBWr00000009mT
  • google-site-verification=8QnNyMDbWSruki0za8KacWG3ltBEQPNX-uWdzvpyGYM
  • 00DDC0000000rpC=1TBdo00000002zV
  • _y4lq7spv3jq43davadje3k9m64cl1dd
  • eqS/aEfTUPryFfCQW032R75/oUcW9JvmcH5mPHDmrt4qcOqBfvwhWkWaTttlTwx0k5Js1aHzD5ACZLYSS4xyew==
  • 00DWG000002emXp=1TBWG00000009D1
  • 00DWF0000081Xzp=1TBWF0000000HX7
  • 00DDC0000000qKT=1TBdl0000000TBh
  • uber-domain-verification=d24b81e2-0ad6-445f-a58b-efcf864e1574
  • Dynatrace-site-verification=4dedd221-36c4-4602-852c-cc252b506f99__o37ocbd82dudu1fa6s6so608fm
  • 00DWr000001H9EP=1TBWr00000009T7
  • 00DDn00000DD5IG=1TBWR00000004V3
  • adobe-idp-site-verification=aa1314cafcf8b9ecf98ea6890b06b182059463ec06855bb984cbfa9cfdab760c
  • apple-domain-verification=231UH8jSWd2Mk4Ub
  • _152u4jt1thmk85t8f8oj67ddr7zq6ca
  • asv=5d4455bac69cf5f11d305bb65fec930e
  • uber-domain-verification=7b725fbd-1b74-4bff-b798-884df8e30d96
  • 00Dct000000RsIr=1TBct00000003fR
  • MS=ms33192393
  • a6547efea9f640d8bd754c953f6cbcf6
  • adobe-idp-site-verification=6a8878fe8c5a004ee1b09db73c6533a08ae7510f62e48055d18d79761aa9e202
  • flexera-domain-verification-jwguqyklybocdqlg
  • workplace-domain-verification=04KlagTtw5GP4kqKXz6vH7XTecfyoO

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:_spf.axa.com include:spf-bulk.axa.com include:spf-bulk.axaxl.com include:spf-csod.axa.com ip4:185.132.180.43 ip4:185.183.28.15 ip4:165.193.192.10 ip4:68.233.77.16 ip4:76.74.161.18 ip4:195.141.4.151 ip4:171.18.34.0/24 ip4:35.80.141.6 ip4:44.229.121.55 ip4:18.168.51.200 ip4:18.168.140.58 ip4:3.123.206.219 ip4:3.68.129.51 ip4:3.105.238.148 ip4:3.106.50.25 ip4:18.180.127.81 ip4:54.64.30.13 ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; fo=1; ri=3600; rua=mailto:ewai10d2@ag.eu.dmarcian.com; ruf=mailto:ewai10d2@fr.eu.dmarcian.com
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGbuxdIBTjdDNlt4RX51MKED2s1jM0zIZv+XUui2r4/5hD5/6PnYbZH8IniYCFmoYn+Xd5a0uwkEzp…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXNlz+YtR0lu9TbxvcbCemSoN97Jrb/R/Q8+fKS4+xJpWnulqg5zgJyzIcYEaSNHGFzlPjmPmltvL0…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8vJ6fT9UOJjowHcwlzlDiIjDOY5uJnatkXUcABqL660Alre2iu5Dcl99XERRJ3PI0KJa9W9j4dwqscalG…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-07-08 to 2026-07-12
Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://axaxl.com/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; style-src https: 'self' 'unsafe-inline' *.googletagmanager.com *.tagmanager.google.com *.fonts.googleapis.com; script-src https: 'nonce-Dx4pLHSmK1QXxKUTc2xL9wY2Ilk=' 'strict-dynamic'; form-action 'self' ; frame-ancestors 'self' https://www.slipcase.com https://marketplace.marsh.com; frame-src 'self' view.ceros.com *.company-target.com *.google.com *.googletagmanager.com *.doubleclick.net *.g.doubleclick.net; report-to csp-endpoint; report-uri https://axaxl.com/api/CSP; font-src 'self' fonts.gstatic.com data:; img-src 'self' * data:; connect-src 'self' browser-intake-datadoghq.com *.googleadservices.com *.googletagmanager.com www.googletagmanager.com *.google-analytics.com *.analytics.google.com *.g.doubleclick.net www.google.com www.google.co.uk www.google.com.sg *.google.com *.googlesyndication.com *.company-target.com *.linkedin.com *.licdn.com *.brightcove.com *.brightcove.net *.brightcovecdn.com *.demandbase.com *.boltdns.net *.akamaihd.net *.nr-data.net *.en25.com
strict-transport-security
max-age=31536000; preload
content-security-policy-report-only
base-uri 'self'; style-src https: 'self' 'unsafe-inline' *.googletagmanager.com *.tagmanager.google.com *.fonts.googleapis.com; script-src https: 'nonce-Dx4pLHSmK1QXxKUTc2xL9wY2Ilk=' 'strict-dynamic'; form-action 'self' ; frame-ancestors 'self' https://www.slipcase.com https://marketplace.marsh.com; frame-src 'self' view.ceros.com *.company-target.com *.google.com *.googletagmanager.com *.doubleclick.net *.g.doubleclick.net; report-to csp-endpoint; report-uri https://axaxl.com/api/CSP; font-src 'self' fonts.gstatic.com data:; img-src 'self' * data:; connect-src 'self' browser-intake-datadoghq.com *.googleadservices.com *.googletagmanager.com www.googletagmanager.com *.google-analytics.com *.analytics.google.com *.g.doubleclick.net www.google.com www.google.co.uk www.google.com.sg *.google.com *.googlesyndication.com *.company-target.com *.linkedin.com *.licdn.com *.brightcove.com *.brightcove.net *.brightcovecdn.com *.demandbase.com *.boltdns.net *.akamaihd.net *.nr-data.net *.en25.com

Links to (5)

Linked from (11)