indexo.dev

bmigroup.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 3663 ms crawled 2026-05-18

US · 15.197.167.90 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Generator
Gatsby 5.16.0
Canonical
https://www.bmigroup.com/

Technology

CDN
Netlify
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • dxb-group.payloadcms.app×33
  • bmidxbgroupplprod.netlify.app×31
  • www.googletagmanager.com×2

Social

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1999-04-30
Expires
2027-04-30 345 days left
Updated
2026-04-26
Name servers
  • dns1.cscdns.net
  • dns2.cscdns.net

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 54 TXT records
  • z8gf7rcjnk0yz8g4npv9p94fjz8dk6z7
  • facebook-domain-verification=yu1931wdk8y8nofnb29aeh1x5wf3rz
  • include:7174318.spf07.hubspotemail.net
  • fx5bvw9xjzqjzkrky0dh4jbrv34c6v43
  • l8wgmwdh805xvl61x1frt0r3q5h7bhfl
  • _0ny6eiy49bhnxopu8ofg5sxb9nk217m
  • yk60vl5gqetkcyi2qanxsjh1m3sjd1
  • m2yzgv732hv2hhvq8fd93bft8b470061
  • zl0wrwg9w9j7m23t3q8clgwbyv9xfg8p
  • 9mtbhmt843jxy8q51848ss0n8bp4tbt7
  • 19zz8njcf4dmwdx32jskdnj3jjny1b9g
  • kd51km6vprzz83bds1ngw7cpnwlvvwmq
  • 1b9f56fwf8stkxy9d552bfp4h739nn2w
  • d492ktwth4bwk5tncc93tr3h4gsbs1k8
  • docusign=dbe583d5-2b46-4d3e-a2a6-f780ac86a5a1
  • 73ngyhg6qwfxgj43wf4hbq04lgq9x8xd
  • tg0bj5zd12clb9hdn915qdw8r7h55b5h
  • wp7m66t31w4q37t3r60cswrb92ql0sbq
  • wy1mvky947w9mn16jvp05hm45k7bp7lg
  • knowbe4-site-verification=93f7b23852b41e7d31528837592cabc8
  • wg4rry3nyf3jh1d5zg9wzjk9yh4h6l2p
  • kr3qkxvl2n38np545stjlggz3vcvdh9m
  • kb1gzsyjjk3xr1bvc98wks7czfdrjvdd
  • f3gg7b9ggvqf2sy306sl440vyjkc174k
  • apple-domain-verification=7vTax6IUGTKjNtDU
  • 4121pxk4lh50ylwrln7flq30kc3byd3g
  • facebook-domain-verification=vi44itfnl3282g1wqrat055ndgdzzt
  • _v1xoyvezrsikefxl4uy7x9rzxvhwieo
  • facebook-domain-verification=6t5ubjb7qth02d969vcq0jfbq433cq
  • onetrust-domain-verification=656914a9dcc04117a605118076f69367
  • MS=BR1-DAK-ATH
  • as=1510753400
  • facebook-domain-verification=5hx6i0xtxqrikp8qg685dceogxl0ve
  • 9jd3qxxmkh1vkkrpxbvk5mygzf2mk1k6
  • facebook-domain-verification=0yegw062bcdgogbmwin4xz8t1ci00q
  • x979r8nhfht0csdy4b60qcl4vv3g0zyb
  • 575226fb805fbe8d0cb8b2a26563111c
  • 4xm9n7wfpb929fczrm4342mcj6hl78zd
  • google-site-verification=6g-kh_NZ2fSREI_66Y-Oyv8yUF-2ahPMeEO4M4MEq0Q
  • 8f75mpq5k8fs5g2f341bq00qs01722qp
  • f6928wl4n9mngd89smp7xks9wysb6ydk
  • nhs7381z8q0y0zv9355tdcx2ybqznwxy
  • y2fnvdkt4w760yzkc9zyrv79vyqkb34q
  • 8fm7svn9pfmj079py3f4mgz3t338568j
  • 94pxqqtj59pkdqj4pzp5y2s12n49bjm4
  • 2jmkk52sszy7q7r04n7g5drc0g948dt7
  • knowbe4-site-verification=d0d24b9bae1c2d2acd7d2fafb482cbcf
  • facebook-domain-verification=isfhh7bif7w6igy824au3lhsp7nxk4
  • fdh88sbsbt137hknz2kr6p1hq9lpvbfx
  • q73ckvbkbvg7sy5tb7sbvvk6sqz8qttn
  • workplace-domain-verification=ajU8xTVTwonnvmY5GezAyvjQ1P81Nw
  • 9rhfsljfbt26ynrc05470y6srwn834xf
  • _r68miiqte8x12g5chb1whzyq317vjec
  • lnhfgnszmlk23wd769vd9zs4w5sg0phr

Email authentication partial

SPF
v=spf1 include:_spf.google.com include:_spf.retarus.com include:authsmtp.com include:eskerondemand.com ip4:185.183.30.180 ip4:185.132.183.122 ip4:185.132.182.53 ip4:91.207.212.29 ip4:217.68.5.18 ip4:194.233.199.137 ip4:48.222.152.36 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; sp=none; pct=100; fo=1; rf=afrf; ri=86400; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc@bmigroup.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com,mailto:dmarcfail@bmigroup.com;
policy: none (monitoring only) · sp=none
DKIM
Show 5 DKIM selectors
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAijUbuO0KTPHxQvowKfm03Ae9KIgStetH0QOIJhQ/jr1fCs/S8dwgEvy6bC15Tth9h26rO57BDR0Rz+…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cC27+KTL0Tfsq3AqzlMID2UO1s5xkUWomzzDjeD9M09TEpQzLGWdVQ6DHwdR0aedUV0fvjooBbNPClOA4…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCmLeKQioPlmQ4y0e3CCtyVPfqEwdIYxPvYtga0g91r1Q4WLLZ6QfNRiUCocUMJUaZBsCrOY23L87mm9JsctMg5Y/…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

Corporation Service Company RSA OV SSL CA
from 2025-07-31 to 2026-08-17
Expires in 89 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bmigroup.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self' https: https://bmidxbgroupcprod.netlify.app https://bmidxbgroupplprod.netlify.app https://*.cookielaw.org; script-src 'self' https://bmidxbgroupcprod.netlify.app https://bmidxbgroupplprod.netlify.app https://cdnjs.cloudflare.com https://www.facebook.com https://connect.facebook.net https://www.googleadservices.com https://www.google.com https://*.googletagmanager.com https://googleads.g.doubleclick.net 'unsafe-inline' 'unsafe-eval' https://*.googleapis.com https://*.gstatic.com *.google.com https://*.ggpht.com *.googleusercontent.com https://www.google-analytics.com https://www.recaptcha.net/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.hotjar.com https://*.hsforms.com https://*.hsforms.net https://*.hubspot.com https://*.hsleadflows.net https://js.hscta.net https://js-eu1.hscta.net https://js.hs-scripts.com https://js-eu1.hs-scripts.com https://*.hs-banner.com https://js-eu1.hs-banner.com https://*.hscollectedforms.net https://js-eu1.hscollectedforms.net h
strict-transport-security
max-age=31536000

Links to (3)

Linked from (29)