cathaybank.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Drupal
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (6)
- app-script.monsido.com×1
- cdnjs.cloudflare.com×1
- cds-sdkcfg.onlineaccess1.com×1
- static.addtoany.com×1
- www.googletagmanager.com×1
- www.googletagservices.com×1
Social
Contact
- Address
- rd outstanding high school seniors.Keep reading12.05.2025
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 1997-10-24
- Expires
- 2026-10-23 157 days left
- Updated
- 2023-04-14
- Name servers
-
- jerry.ns.cloudflare.com
- tess.ns.cloudflare.com
DNS records live
- NS
-
- jerry.ns.cloudflare.com
- tess.ns.cloudflare.com
- MX
-
- 0 cathaybank-com.mail.protection.outlook.com
- TXT
-
Show 6 TXT records
MS=ms77050588e11f58a9afb350d4f2734ea73488e1dfeaee602ab984521489f6c8de12ba1158google-site-verification=U9s0JGmZpOS1O8Wy3zcakxLjeT77NO0m1Z8Z378ucZkgoogle-site-verification=rQ3TERcl9kvkMD8paR8VElDwfyCjTVEXxNXjuOE8bP4have-i-been-pwned-verification=8505d991e9a32f37b08fbfef1029cedfvi/phw37cldS7IpONBGQZFtFWikO6bl4AUHo4yURnPrtuZS9doqLX4+Y4r7ckBF4XAWIUI2qPN2k8mpErf0/6Q==
Email authentication strong
- SPF
-
v=spf1 mx include:spf1.cathaybank.com include:spfhost.messageprovider.com include:spf.protection.outlook.com include:_spf.salesforce.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; fo=1; pct=100; ri=3600; rua=mailto:cathay-bank@rua.agari.com,mailto:dmarclog@cathaybank.com; ruf=mailto:cathay-bank@ruf.agari.com,mailto:dmarclog@cathaybank.compolicy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqcBn04TItgMOgTOXi1AI3dX4lE3TIKaqd3rMTwrwlKrT085WP/14naovYbovFBCqCpLGZbatrnkKYK5RusZ… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsotj9T5WI+WVEyaCK/EKI1VM+I6a2mJnTxAQuzguHstn5x3yoeslzEgN/a3MXVfMHxAOPQ6IusWJonD6On… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDKj8bVEzk5WrAsTyr2EoZilduNwyU/SHh4dB/FHSYOBaNuKRxV6yVPadLO4pg9BgwtdeZEaB7jhEVgmO6TIGSJ3H…
selectors probed - selector1:
Certificate (current)
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 145 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
script-src 'self' 'unsafe-inline' cds-sdkcfg.onlineaccess1.com connect.facebook.net cdnjs.cloudflare.com static.addtoany.com maps.googleapis.com *.googleadservices.com googleadservices.com *.google-analytics.com google-analytics.com *.googletagmanager.com googletagmanager.com *.googletagservices.com googletagservices.com adservice.google.com googleads.g.doubleclick.net use.typekit.net js-agent.newrelic.com www.google.com bam-cell.nr-data.net www.recaptcha.net www.gstatic.com info.autobooks.co fx.cathaybank.com www.gstatic.com/recaptcha/ www.google.com/recaptcha/ home-c44.nice-incontact.com cdn.jsdelivr.net/; object-src 'none'; style-src 'self' 'unsafe-inline' static.addtoany.com fonts.googleapis.com; frame-src 'self' static.addtoany.com ad.doubleclick.net youtube.com youtube-nocookie.com facebook.com recaptcha.net info.autobooks.co recaptcha.google.com/recaptcha google.com/recaptcha home-c44.nice-incontact.com https://www.googletagmanager.com/ td.doubleclick.net https://www.youtube.com- strict-transport-security
max-age=31536000; includeSubDomains
Links to (6)
Linked from (2)
- sccca.org×2
- llc234.com×2