indexo.dev

berettaheating.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-15 · ok HTTP/1.1 200 397 ms crawled 2026-05-08

US · 172.64.150.221 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Beretta Boilers - International website
Description
Recognised as a leader in the residential heating sector; our ongoing mission is to develop innovative products and solutions that satisfy global needs.
Language
en
Canonical
/
Translations
  • en
  • es-es
  • pl-pl
  • ro-ro
  • zh-cn

Open Graph

url
https://www.berettaheating.com/
title
Beretta Boilers - International website
description
META des

Technology

CDN
Cloudflare
Cookie consent
  • OneTrust

Third-party hosts loaded (3)

  • cdn.cookielaw.org×2
  • images.carriercms.com×1
  • www.berettaclima.it×1

Contact

Phone

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2016-07-07
Expires
2026-07-07 49 days left
Updated
2025-07-03
Name servers
  • gabe.ns.cloudflare.com
  • tricia.ns.cloudflare.com

DNS records live

NS
  • gabe.ns.cloudflare.com
  • tricia.ns.cloudflare.com
MX
  • 10 mxa-0065c301.gslb.pphosted.com
  • 10 mxb-0065c301.gslb.pphosted.com
TXT
  • MS=ms21647374

Email authentication strong

SPF
v=spf1 include:spf-00105401.pphosted.com include:spf.protection.outlook.com include:spf-0065c301.pphosted.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPYm4o4algh2Wq5hgMVhMxWsUalWYLMxY9LdFShzF1rC6XjukvHGun861OPZUK3qYg7+4GDP/ShQBk…
selectors probed

Certificate (current)

Cloudflare TLS Issuing ECC CA 1
from 2026-04-03 to 2026-07-02
Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.berettaheating.com

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
img-src * data:; script-src * 'unsafe-inline' 'unsafe-eval'; worker-src blob:;
strict-transport-security
max-age=31536000; includeSubDomains

Links to (3)

Linked from (4)