cormay.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-09 · ok HTTP/1.1 200 495 ms crawled 2026-05-09

PL · 85.128.184.121 · AS15967 Nazwa.pl Sp.z.o.o.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Systemy i urządzenia do analiz medycznych, badania laboratoryjne - Lublin | Cormay Diagnostics
Description: Sprzedajemy systemy i urządzenia do analiz medycznych, produkujemy odczynniki diagnostyczne i testy. Firma Cormay dostarcza sprzęt laboratoryjny do Klientów z ponad 150 państw.
Language: pl

Open Graph

title: Strona Główna | Cormay Diagnostics

Technology

Server: Apache

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Fonts

Google Fonts

Third-party hosts loaded (6)

fonts.googleapis.com×2
www.googletagmanager.com×2
consent.cookiebot.com×1
fonts.gstatic.com×1
px.ads.linkedin.com×1
www.google.com×1

Social

Contact

Email

Phone

+48 22 751 79 10

Address

Wiosenna 22, 05-092, Łomianki, mazowieckie

Registration

Registrar

NetArt Registrar Sp. z o.o.

Created

2003-06-18

Expires

2026-06-18 28 days left

Updated

2025-06-12

Name servers

ns1.nazwa.pl
ns2.nazwa.pl
ns3.nazwa.pl

DNS records live

NS

ns1.nazwa.pl
ns2.nazwa.pl
ns3.nazwa.pl

MX

10 cormay.nazwa.pl

Email authentication weak

SPF: v=spf1 mx a ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

nazwaSSL DV TLS G2 E29 CA

from 2025-07-11 to 2026-07-10

Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://cormay.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(self), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(self), picture-in-picture=(), speaker=(), sync-xhr=(), usb=(), vibrate=(), vr=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' play.google.com *.play.google.com www.youtube-nocookie.com youtube-nocookie.com *.youtube-nocookie.com *.plyr.io *.noembed.com *.cookiebot.com *.googletagmanager.com *.googleadservices.com *.ggpht.com *.doubleclick.net *.google-analytics.com *.youtube.com *.ytimg.com *.google.com *.google.pl *.gstatic.com *.googleapis.com; style-src 'self' 'unsafe-inline' *.youtube-nocookie.com *.plyr.io *.noembed.com *.cookiebot.com *.googletagmanager.com *.googleadservices.com *.ggpht.com *.doubleclick.net *.google-analytics.com *.youtube.com *.ytimg.com *.google.com *.google.pl *.gstatic.com *.googleapis.com; img-src 'self' data: *.youtube-nocookie.com *.plyr.io *.noembed.com *.cookiebot.com *.googletagmanager.com *.googleadservices.com *.ggpht.com *.doubleclick.net *.ads.linkedin.com *.google-analytics.com *.youtube.com *.ytimg.com *.google.com *.google.pl *.gstatic.com *.googleapis.com; font-src 'self' data: *.youtube-nocookie.com
strict-transport-security: max-age=31536000; includeSubDomains

Links to (3)

Linked from (1)

cormaydiagnostics.com×2