baselinepro.com
HTML metadata
Technology
- CDN
- Vercel
- CMS
- Next.js
- Analytics
-
- Google Tag Manager
- Ads
-
- Meta Pixel
Third-party hosts loaded (12)
- brand-assets.softwareadvice.com×5
- us.i.posthog.com×2
- www.googletagmanager.com×2
- brand-assets.capterra.com×1
- brand-assets.getapp.com×1
- cdn.sanity.io×1
- connect.facebook.net×1
- js.hs-scripts.com×1
- r2.leadsy.ai×1
- tr.capterra.com×1
- widget.intercom.io×1
- www.facebook.com×1
Social
Registration
- Registrar
- Cloudflare, Inc.
- Created
- 2018-12-04
- Expires
- 2027-12-04 564 days left
- Updated
- 2025-09-03
- Name servers
-
- javier.ns.cloudflare.com
- rosemary.ns.cloudflare.com
DNS records live
- NS
-
- javier.ns.cloudflare.com
- rosemary.ns.cloudflare.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
google-site-verification=xb4xzEGgZPV1PSCZMTppWFojYkU6VbbISmZiMnqamCM
Email authentication partial
- SPF
-
v=spf1 include:_spf.google.com include:sendgrid.net include:47194621.spf03.hubspotemail.net include:amazonses.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=nonepolicy: none (monitoring only) - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFjks8smp8583WAgusxLVwScsdWqHudRHLX96wgAclfyVH36s9PnN2xqQYZihx2TBfVUwiQ/IhQY9V… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIEYxPaIcqwfzi2v0PLUfob7FrOc5TPLUgqKbrOriT2nDGzJ/eOxN5zWl5HD/x9rtzu3uHESc05UkfKeNi… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsksKaCG0nmmlns1NMMqGnqS2oWKSspAMxS8juXKtdzktnA4TeduF2vN1dJZlBSqQYZbhYmFMz1XTsl84fB…
selectors probed - google:
Certificate (current)
R12
Expires in 68 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
camera=(), microphone=(), geolocation=(), interest-cohort=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://widget.intercom.io https://js.intercomcdn.com https://app.cal.com https://us.i.posthog.com https://us-assets.i.posthog.com https://tr.capterra.com https://connect.facebook.net https://www.googletagmanager.com https://r2.leadsy.ai https://js.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsadspixel.net https://js.usemessages.com https://js.hubspot.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: blob: https://cdn.sanity.io https://*.intercomcdn.com https://*.intercom-mail.com https://brand-assets.softwareadvice.com https://brand-assets.capterra.com https://brand-assets.getapp.com https://tr.capterra.com https://www.facebook.com https://track.hubspot.com https://*.hubspot.com https://*.hsforms.com https://*.hsforms.net; font-src 'self' https://fonts.gstatic.com https://js.intercomcdn.com; connect-src 'self' https://*.sanity.io https://cdn.san- strict-transport-security
max-age=63072000; includeSubDomains; preload
Links to (8)
- capterra.com×2
- facebook.com×2
- getapp.com×2
- instagram.com×2
- linkedin.com×2
- softwareadvice.com×2
- x.com×2
- tiktok.com×1
Linked from (1)
- abca.org×2