businessmap.io

HTML metadata

Title

Businessmap | Multi Project Management Software

Description

Businessmap is a project and portfolio management software that helps organizations align strategy with execution and deliver work faster.

Language

en

Canonical

https://businessmap.io/

Translations

de
en
es
fr
it
pl
pt

Open Graph

url: https://businessmap.io/
title: Businessmap | Multi Project Management Software
site name: Multi Project Management Software
description: Businessmap is a project and portfolio management software that helps organizations align strategy with execution and deliver work faster.

Technology

Server: Apache

Fonts

Google Fonts

Third-party hosts loaded (1)

fonts.googleapis.com×1

Social

Contact

Phone

DNS records live

NS

ns-1326.awsdns-37.org
ns-1718.awsdns-22.co.uk
ns-419.awsdns-52.com
ns-528.awsdns-02.net

MX

10 businessmap-io.mail.protection.outlook.com

TXT

google-site-verification=GbuPJzJaeSEktBNTtOdbQvG6ttJuK0owqU3f380LPRU
google-site-verification=R2bP-1buLDP8RXPuy2dknqqUb8Llp4OOBZNfCLXqBGg
google-site-verification=aP67KdriSzopH4zP62KKcIItuf2Mm6nxkNTno2C85jI

Email authentication strong

SPF

v=spf1 +mx +a +ip4:164.138.221.186 +include:protection.outlook.com +include:spf.protection.outlook.com +include:amazonses.com +include:mail.kanbanize.com ~all

softfail (~all)

DMARC

v=DMARC1;p=reject;pct=100; rua=mailto:qkw3ozvtps@rua.powerdmarc.com; ruf=mailto:qkw3ozvtps@ruf.powerdmarc.com;

policy: reject (enforced)

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UFClf/IShyXqwzYiX8+FGNMKwVXXPDwbAjECSObQDP1VmUrRv6YzPzdDEfn/QRoXmfSZjwjjI2uTB…
selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXMepcslByesj7hjCxH7olKeAcZn4M0hfw7pTf0cP+0Alt6My9y/whUljMJ6WwoTXoHF/DJRZhw1Gi…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-07-29 to 2026-08-28

Expires in 101 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://businessmap.io/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: script-src *.kanbanize.com *.googleapis.com *.gstatic.com *.google.com *.doubleclick.net *.youtube.com *.google-analytics.com *.hs-scripts.com *.hs-banner.com *.usemessages.com *.hsleadflows.net *.hs-analytics.net *.hubspot.com *.typeform.com *.execute-api.us-east-1.amazonaws.com *.sentry-cdn.com *.cloudfront.net *.googleadservices.com *.ads-twitter.com *.twitter.com *.facebook.net *.licdn.com *.ytimg.com widgets.wp.com https://*.cookiebot.com https://*.cookieconsent.com https://*.crazyegg.com https://*.clarity.ms https://c.bing.com https://r2.leadsy.ai/tag.js 'self' 'unsafe-inline' 'unsafe-eval' *.googletagmanager.com; img-src * https://*.cookiebot.com https://*.cookieconsent.com https://*.crazyegg.com data:; worker-src 'self' blob:; frame-ancestors 'self' https://*.businessmap.io https://*.kanbanize.com https://*.flow-e.com;
strict-transport-security: max-age=31537000; includeSubDomains
cross-origin-opener-policy: same-origin-allow-popups