bancofinandina.com

HTML metadata

Title: Banco Finandina: ¡Bienvenidos a la Banca Libre!
Description: ¡Libertad es tener el Banco cuando y dónde lo necesites! Ingresa ya al Banco Digital que está disponible 24/7.
Language: es-CO
Canonical: https://www.bancofinandina.com

Open Graph

url: https://www.bancofinandina.com/
title: Banco Finandina: Banca Libre
locale: es-co
site name: Banco Finandina
description: ¡Libertad es tener el Banco cuando y dónde lo necesites!

Technology

Server: Microsoft-IIS

Analytics

Google Analytics
Google Tag Manager
Hotjar

Ads

Meta Pixel

Third-party hosts loaded (6)

connect.facebook.net×1
js.hs-scripts.com×1
static.hotjar.com×1
whmjkjue.saw.stape.io×1
www.google-analytics.com×1
www.googletagmanager.com×1

Social

Contact

Phone

Address

Kilómetro 17 Carretera central del norte, Bogotá - Chia, 250002, Chía, CUN, CO

Registration

Registrar

GoDaddy.com, LLC

Created

2010-12-07

Expires

2026-12-07 200 days left

Updated

2025-12-08

Name servers

pdns13.domaincontrol.com
pdns14.domaincontrol.com

DNS records live

NS

pdns13.domaincontrol.com
pdns14.domaincontrol.com

MX

Show 6 MX records

0 bancofinandina.in.tmes.trendmicro.com
1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

sctrans._domainkey.bancofinandina.com=v=DKIM1;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDMosG+MxmElXNrhbAR1axCSooLDnWXDXF32o/RwNSoLu9SmJ0GUoiWhOH4IEpzURqmqCzrOi5ontgpeKCTF9IN5QyhSB1PloIKWsH+LJ4+8cA1jhx0p/88WX8GQTMbzxLBIUbCOXi3HYayt738m1lODJorsIEo5MYbyXcPsCFawIDAQAB

Verified for

GlobalSign

Email authentication strong

SPF

v=spf1 include:spf.tmes.trendmicro.com include:_spf.google.com include:spf1.masivapp.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100; ri=86400; rua=mailto:seinfociber@bancofinandina.com; ruf=mailto:seguridad.informatica@bancofinandina.com

policy: quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCVd30uI+j/6UWfBK1kqTdKyi7Ug8MSbg/h1K160oL74UduNln0UV7UsNL6dQ6R621CNWeMq7n2v9DAxs7Gjz…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtS3Z9qSo9IOIVPhonk45zA+SqcwwQZ/gOqYplrjkXdo7c48zaCpM2lY0nsl2v0m7jvHtM3t/q5+HHbgl7…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCuMByOYo3aEWY2vhx2GoPusDQu5R4ZV2JhZe2nrWjmhGw8Foot+NzwrXL1RV3A9ZRjIaLQ1GJm5Mf1jUqwoC7aJ7…

selectors probed

Certificate (current)

GlobalSign RSA OV SSL CA 2018

from 2025-05-13 to 2026-05-20

Expired 1 day ago

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.bancofinandina.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-src 'self' youtube.com www.youtube.com https://www.youtube.com https://td.doubleclick.net https://www.googletagmanager.com *.hubspot.com; object-src 'none'; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://www.googletagmanager.com https://www.google-analytics.com https://www.googleadservices.com https://static.hotjar.com https://vars.hotjar.com https://script.hotjar.com https://googleads.g.doubleclick.net https://maps.googleapis.com https://www.gstatic.com http://ajax.googleapis.com https://connect.facebook.net https://snap.licdn.com https://cdn.pagesense.io https://cdn.pagesense.io/js/zuu6ab51/1d3a95a9d85e47e0b4ad2a3d7868dd6e.js https://js.hubspot.com https://forms.hubspot.com *.hs-scripts.com *.hs-banner.com *.hsforms.com *.hsforms.net *.hscollectedforms.net *.hsadspixel.net *.hs-analytics.net *.usemessages.com ;
strict-transport-security: max-age=31536000
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin

Links to (8)

Linked from (2)

aguayo.co×2
feusab.com×2