capeandcoastbank.com

HTML metadata

Title: Cape & Coast Bank | Your Local Community Bank Since 1921
Description: Experience personalized community banking with Cape & Coast Bank. Serving families and businesses with local decisions, competitive rates, and genuine care.
Language: en-US
Canonical: https://www.capeandcoastbank.com/

Open Graph

url: https://www.capeandcoastbank.com/
title: Cape & Coast Bank | Your Local Community Bank Since 1921
locale: en_US
site name: Cape & Coast Bank
description: Experience personalized community banking with Cape & Coast Bank. Serving families and businesses with local decisions, competitive rates, and genuine care.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Fonts

Adobe Fonts
Google Fonts

Third-party hosts loaded (9)

cdn.jsdelivr.net×3
cdnjs.cloudflare.com×3
fonts.googleapis.com×3
api.glia.com×2
use.typekit.net×2
www.google.com×2
consent.cookiebot.com×1
gmpg.org×1
www.googletagmanager.com×1

Social

Contact

Phone

211371641

Registration

Registrar

GoDaddy.com, LLC

Created

2024-09-16

Expires

2029-09-16 1214 days left

Updated

2025-06-25

Name servers

ns31.domaincontrol.com
ns32.domaincontrol.com

DNS records live

NS

ns31.domaincontrol.com
ns32.domaincontrol.com

MX

10 mx.usa.net
20 mx.ct.mbox.net

TXT

t4u4enc2fb6e2f41k5g0f9qac8
knowbe4-site-verification=ec7e7f7817fc4e4f02cedf651e86ee06

Verified for

Apple
Google
Microsoft 365

Email authentication strong

SPF

v=spf1 a mx include:spf.zixsmbhosted.com include:_spf.sendergen.com include:mailgun.org include:_spf.messagegears.net include:_spf.elasticemail.com ip4:167.89.11.238 ip4:44.214.246.148/32    ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@capeandcoastbank.com; adkim=r; aspf=r; sp=quarantine; pct=10

policy: quarantine · pct=10 · sp=quarantine

DKIM

k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDaavE/2V3bRJmje27DRvIhC1rNco2KZ48P34EHI9mx98Clg4LG2oJGmKqNg7nkv80CSHy9Cso7zvU3GGNUqDu2+R2IUeL…

selectors probed

Certificate (current)

E8

from 2026-03-11 to 2026-06-09

Expires in 20 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.capeandcoastbank.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: https://*.salemove.com https://*.glia.com; style-src 'self' 'unsafe-inline' https: https://*.salemove.com https://*.glia.com; img-src 'self' data: https: https://*.salemove.com https://*.glia.com; media-src 'self' data: https: https://*.salemove.com https://*.glia.com; font-src 'self' data: https: https://*.salemove.com https://*.glia.com; frame-src 'self' https:; object-src 'none'; connect-src 'self' https: wss://*.salemove.com wss://*.glia.com wss://*.twilio.com; base-uri 'self'; upgrade-insecure-requests
strict-transport-security: max-age=63072000
cross-origin-opener-policy: unsafe-none
cross-origin-embedder-policy: unsafe-none; report-to='default'
cross-origin-resource-policy: cross-origin