indexo.dev

coautilities.com

.com crawl

First seen 2026-04-17 · Last seen 2026-05-08 · ok HTTP/1.1 200 3624 ms crawled 2026-05-12

US · 162.89.23.73 · AS53368 Austin Energy Corporation

Reputation 100/100

Classifying

HTML metadata

Title
City of Austin Utilities
Language
en

Open Graph

title
City of Austin Utilities
site name
City of Austin Utilities
description
View your City of Austin utility bill, pay your bill and more!

Technology

Analytics
  • Google Tag Manager
Fonts
  • Font Awesome
  • Google Fonts

Third-party hosts loaded (6)

  • cdn.jsdelivr.net×3
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • translate.google.com×1
  • use.fontawesome.com×1
  • www.googletagmanager.com×1

Contact

Phone

Registration

Registrar
GoDaddy.com, LLC
Created
2004-05-24
Expires
2027-05-24 369 days left
Updated
2025-05-13
Name servers
  • ns1.austinenergy.com
  • ns2.austinenergy.com

DNS records live

NS
  • ns1.austinenergy.com
  • ns2.austinenergy.com
MX
  • 10 coautilities-com.mail.protection.outlook.com
TXT
Show 5 TXT records
  • 6jyttX5IYHsCjJ9KTkoGgO+KjVQRqvzqCGP6enOeVP7GiH9njLZSDfptD/dA+mr2CMzClDJibpd0Ah/OusnExw==
  • MS=ms38292007
  • m4tcao376ev9j4upv15oafempd
  • 3gs9jergshqqmcinshrlk6aid3
  • lpd9k3uhi334m315v2ttkj8a02

Email authentication strong

SPF
v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.valigov.email ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@valigov.email,mailto:dmarc_rua@emaildefense.proofpoint.com
policy: quarantine
DKIM
no key found at common selectors

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-11-25 to 2026-12-27
Expires in 222 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://coautilities.com/wps/wcm/connect/occ/coa/home

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://js.adsrvr.org/ https://cdn.jsdelivr.net/npm/jquery@3.5.1/dist/jquery.min.js http://translate.google.com/ https://translate.googleapis.com/ https://translate-pa.googleapis.com/ https://www.googletagmanager.com/ http://www.googletagmanager.com/ https://cdn.jsdelivr.net/ https://www.google-analytics.com/ https://connect.facebook.net/ https://secure.adnxs.com/ https://r.turn.com/ https://zn71z5htkkoyxlanf-austinenergy.siteintercept.qualtrics.com/ https://siteintercept.qualtrics.com/; style-src 'unsafe-inline' 'self' https://stackpath.bootstrapcdn.com https://cdn.jsdelivr.net https://fonts.googleapis.com https://use.fontawesome.com https://www.gstatic.com; object-src 'none'; base-uri 'self'; connect-src 'self' https://cdn.jsdelivr.net https://www.googletagmanager.com/ https://translate-pa.googleapis.com https://region1.google-analytics.com https://insight.adsrvr.org https://www.google-analytics.com https://translate
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (4)

Linked from (1)