benchmarkeducation.com
HTML metadata
Technology
- CMS
- Gatsby
- Analytics
-
- Google Tag Manager
- Fonts
-
- Adobe Fonts
Third-party hosts loaded (7)
- site-marketing-sites.s3.amazonaws.com×4
- www.googletagmanager.com×3
- js.hs-scripts.com×1
- js.hsforms.net×1
- platform-api.sharethis.com×1
- rum.hlx.page×1
- use.typekit.net×1
Social
Registration
- Registrar
- Network Solutions, LLC
- Created
- 1998-12-08
- Expires
- 2026-12-07 202 days left
- Updated
- 2021-10-08
- Name servers
-
- ns-1191.awsdns-20.org
- ns-1654.awsdns-14.co.uk
- ns-460.awsdns-57.com
- ns-879.awsdns-45.net
DNS records live
- NS
-
- ns-1191.awsdns-20.org
- ns-1654.awsdns-14.co.uk
- ns-460.awsdns-57.com
- ns-879.awsdns-45.net
- MX
-
- 10 us-smtp-inbound-1.mimecast.com
- 10 us-smtp-inbound-2.mimecast.com
- TXT
-
Show 12 TXT records
7925C8E006CumGa4eWCu9xzkVdagBpqoLdCG17/LBFnqolCnz6XyvcEtEWtf3ymnD0d48erpYprCEH3CviI2Hu2U0hQA6Lzg==adobe-idp-site-verification=d0d12d38-5ca4-4030-a5a4-f1047d2fbf40apple-domain-verification=XgBBQyNR7TheCAZQatlassian-domain-verification=LoYso2CnLFvak39/x76LhLxkvEDovapCIM9XQ0eWiGQQUkqHIQDS3OBpBVHe1qbeatlassian-domain-verification=rM38eBOiXdo6VH4yidhjYg639kQ61R9DqmUk20aGBZ8mkl0LUYVVaXhs0NXBglTRextensis-domain-verification=d521afd6-7741-4c22-8243-0acd6c46cd90selector1-benchmarkeducation-com._domainkey.benchmarkeducation1.onmicrosoft.comselector2-benchmarkeducation-com._domainkey.benchmarkeducation1.onmicrosoft.comsmartsheet-site-validation=KrSh2LY8_37OAarYVQxnzQ5TYlhw7CLJ0ed1fe018a9ded2e354d8f487894e3225b8601158248138b1c23671e0f82b20dfd6a6cce1e
Email authentication partial
- SPF
-
v=spf1 include:us._netblocks.mimecast.com include:servers.mcsv.net include:sent-via.netsuite.com include:_spf.act-on.net include:44286982.spf58.hubspotemail.net include:u16920121.wl122.sendgrid.net -allstrict (-all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - mail:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCpuDFs+laI+uqPEV3N5EsNJTPftx2I+BIafi65PgzZuVfmgmDM7bHoFPUXz5/BThZNzprxUWOkmJnYf33jnxb1I+hu/+5… - s1:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDlh1VbBXro18OqHPR39oJSvj9dj36306N3EN4BGRgWW9Hrv4uL2wLXJF2VBk9mEWD4xEpxJMUKHiRBvg8Ln+IAOc… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3OfKnAlG/GRPP8AZkcEzQAEOPBhoyZPaao6thEFFP0G7FtNg3Nuoa9Gak6zvi0VWvDWtnH0Yap89n2mDo5X7/2D…
selectors probed - k1:
Certificate (current)
R13
Expires in 46 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com *.fontawesome.com 'self' data: goto.benchmarkeducation.com *.braintreegateway.com *.paypal.com *.kaptcha.com *.wistia.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.benchmarkeducation.com/ *.newmarklearning.com/ *.jotfor.ms *.jotfor.com *.jotform.us *.jotform.com *.braintreegateway.com *.kaptcha.com forms.hscollectedforms.net *.hsforms.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.facebook.com 'self' 'unsafe-inline'; frame-ancestors *.gstatic.com 'self'; f- strict-transport-security
max-age=31536000