cbcrl.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-02 · ok HTTP/1.1 200 1119 ms crawled 2026-05-07

US · 198.23.51.173 · AS14555 LiquidNet US LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: City Bank Capital

Technology

Server: Apache

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×2
cdn.datatables.net×1
fonts.gstatic.com×1
www.google.com×1

Social

Contact

Email

Phone

+8809613011011

Registration

Registrar

LiquidNet Ltd.

Created

2011-12-27

Expires

2026-12-27 222 days left

Updated

2025-12-23

Name servers

ns1.xebecsoft.net
ns2.xebecsoft.net
ns3.xebecsoft.net
ns4.xebecsoft.net

DNS records live

NS

ns1.xebecsoft.net
ns2.xebecsoft.net
ns3.xebecsoft.net
ns4.xebecsoft.net

MX

0 cbcrl-com.mail.protection.outlook.com

TXT

MS=ms49850914

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

default: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC41vG+wqCWOd0F/oWYE+eCCtVzX+orzBn5+rXS54pC3nxuqVNMZpLiq38bIyJsAIROsvvfmDtoh5XdP8Y1PB9RYVMmqvU…
selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCY1YDrtS+pusozQ1gKfG7NArxYFXrOtBOEoua6GhT1THKhL7vBm05yen6Jgz/99I4x+3CjdGmPUS30kY5PFE…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-07-10 to 2026-08-11

Expires in 84 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://cbcrl.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: autoplay=(self), camera=(), encrypted-media=(self), fullscreen=(), geolocation=(self), gyroscope=(self), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=(self), usb=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://cbcrl.com/ https://www.facebook.com/ https://web.facebook.com https://socialplugin.facebook.net/ https://www.youtube-nocookie.com/ https://www.youtube.com/ https://www.google.com https://maps.googleapis.com; script-src 'self' 'unsafe-eval' https://cbcrl.com/ https://cdn.datatables.net https://www.google.com https://www.gstatic.com https://ajax.googleapis.com https://polyfill.io https://maps.googleapis.com https://connect.facebook.net https://connect.facebook.net/en_US/sdk/xfbml.customerchat.js 'unsafe-inline'; style-src 'self' https://cdn.datatables.net https://use.fontawesome.com/releases/v5.8.2/css/all.css https://fonts.googleapis.com https://unpkg.com/swiper/css/swiper.min.css https://cdnjs.cloudflare.com/ajax/libs/ionicons/2.0.1/css/ionicons.min.css https://www.w3schools.com/w3css/4/w3.css https://kenwheeler.github.io/slick/slick/slick.css https://kenwheeler.github.io/slick/slick/slick-theme.css 'unsafe-inline'; font-src 'self' data: https://fonts.gstat
strict-transport-security: max-age=31536000; includeSubDomains

Links to (5)

Linked from (1)

datacraftbd.com×2