cashpresso.com
HTML metadata
Technology
- Cookie consent
-
- OneTrust
Third-party hosts loaded (2)
- cdn.cookielaw.org×1
- js.hcaptcha.com×1
Social
Contact
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 2016-04-29
- Expires
- 2027-04-29 345 days left
- Updated
- 2026-03-25
- Name servers
-
- ns-1060.awsdns-04.org
- ns-1893.awsdns-44.co.uk
- ns-505.awsdns-63.com
- ns-913.awsdns-50.net
DNS records live
- NS
-
- ns-1060.awsdns-04.org
- ns-1893.awsdns-44.co.uk
- ns-505.awsdns-63.com
- ns-913.awsdns-50.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
_hova0pw4p5jy98oep7prkcbxmkdyl7zatlassian-domain-verification=Np8LZGYVWdDuSmDkrgvipeB/ytJclbn5OrNMaoueKyi1aSdQTN8nv0C8atxUAl1qgoogle-site-verification=hS4jgI7C6Ga7cczbq7zkrJ-jSt0-b-HZTbYXf6q0QCQ
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com include:mail.zendesk.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:re+mcbthnhvvgn@inbound.dmarcdigests.com; ruf=mailto:forensicreports@cashpresso.com; adkim=r; aspf=r; pct=100policy: quarantine · sp=quarantine - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCoUwu4hqyjNwV4r/ad6+tNlocEycTw1i0l2Vx05SW3C3XLLrILnkhFziA+Vubfg5/eaAtzO0yRx2hGp+ojci…
selectors probed - google:
Certificate (current)
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 246 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), autoplay=(self), camera=(), clipboard-read=(self), clipboard-write=(self), cross-origin-isolated=(), display-capture=(), encrypted-media=(self), fullscreen=(self), gamepad=(), geolocation=(self), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(self), publickey-credentials-get=(), screen-wake-lock=(self), serial=(), storage-access=(), sync-xhr=(), unload=(), usb=(), window-management=(), window-placement=(self), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' https://www.youtube.com https://cdn.mouseflow.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google.com https://227eg7.cashpresso.com https://d1mxyhmor38cww.cloudfront.net/latest/groupcms.js https://d1mxyhmor38cww.cloudfront.net/dev/groupcms.js https://cdn.adjust.com https://cdn.cookielaw.org https://connect.facebook.net https://googleads.g.doubleclick.net https://snap.licdn.com 'unsafe-inline' 'unsafe-eval' https://hcaptcha.com https://*.hcaptcha.com https://*.googleapis.com https://*.gstatic.com https://*.google.com https://*.ggpht.com https://*.googleusercontent.com blob:; style-src 'self' 'unsafe-inline' 'unsafe-eval' https://hcaptcha.com https://*.hcaptcha.com https://fonts.googleapis.com; connect-src 'self' https://eu01.rec.mouseflow.com https://o2.mouseflow.com https://cdn.cookielaw.org https://geolocation.onetrust.com https://privacyportal-de.onetrust.com https://app.adjust.com https://*.googleapis.com h- strict-transport-security
max-age=63072000; includeSubDomains;- cross-origin-opener-policy
same-origin