colas.fr

.fr crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1077 ms crawled 2026-05-18

NL · 172.211.180.75 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Colas France – Aménageur des territoires
Description: Colas France, aménageur des territoires : routes, mobilités douces, eau, génie écologique, bâtiment et recyclage. Des solutions durables partout en France.
Language: fr
Canonical: https://www.colas.fr/fr

Technology

CDN: Akamai

Cookie consent

Cookiebot

Fonts

Google Fonts

Third-party hosts loaded (8)

cdn.jsdelivr.net×6
siteimproveanalytics.com×2
cdnjs.cloudflare.com×1
consent.cookiebot.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
static.pathmotion.io×1
www.youtube.com×1

Contact

Address: 1 rue du colonel Pierre Avia, 75015, Paris, FR

Registration

Registrar

Orange Business Services SA, direction EOLAS

Created

1996-10-29

Expires

2026-10-29 163 days left

Updated

2025-10-24

Name servers

ns01.eolas.fr
ns02.eolas.fr
ns03.eolas-dns.eu

DNS records live

NS

ns01.eolas.fr
ns02.eolas.fr
ns03.eolas-dns.eu

MX

5 colas.in.tmes.trendmicro.eu

TXT

tmes=af56fffdd7a22a0c64fd46c67c56ce3d
wiz-domain-verification=643d457e09845a1e950d45f89b2891b422aaecafa1dd92fe1de17ceda6c3e608
MS=ms30633141

Email authentication partial

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all

strict (-all)

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDC9usVmOQxRI+yqXBnF6Z0eHXTHdMoUjPcXF9C+qgQ9sR2kGo1/0Hvx6H1C5sKMKbt5psUNnD/S0hnsGENmg…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCO9kisPaXop35S/cNum7fspeKJcMtforzqiJT4Ah/sLlfB4Afydzs2L7rg1tMiGUv+x/+D9NTUPgbU/GYrpj…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-02-06 to 2026-08-07

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.colas.fr/fr

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: ALLOW-FROM https://www.equans.co.uk
x-content-type-options: nosniff
content-security-policy: default-src 'none' ; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google-analytics.com www.googletagmanager.com snap.licdn.com cookie-cdn.cookiepro.com cdn.cookielaw.org googletagmanager.com *.googleapis.com cdnjs.cloudflare.com www.google.com www.gstatic.com www.buzzsprout.com/ cdn.jsdelivr.net/gh/ckeditor/ static.pathmotion.io pathmotion.com equans.career-inspiration.com/ *.doubleclick.net *.googleadservices.com connect.facebook.net fbcdn.net cdn.jsdelivr.net consent.cookiebot.com siteimproveanalytics.com cdn.matomo.cloud cdn.siteimprove.net www.youtube-nocookie.com unpkg.com odyssiant.azureedge.net *.bootstrapcdn.com js-agent.newrelic.com *.linkedin.com snippet.capybara.lmc.cz s.go-mpulse.net tags.data-driven.fr *.byspotify.com *.tiktok.com cdn.cookielaw.org eu.textrecruit.com *.hotjar.com sc-static.net secure.data-insight365.com cdn.leadinfo.net *.ldnfrpl.com assets.juicer.io consentcdn.cookiebot.com www.youtube.com hcaptcha.com; object-src 'none' ; style-src 'self' 'unsafe-in
strict-transport-security: max-age=15768000 ; includeSubDomains

Links to (3)

Linked from (1)

colas.com×3