cqg.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-10 · ok HTTP/1.1 200 3981 ms crawled 2026-05-10

US · 63.175.228.94 · AS25765 CQG, Inc.

Reputation 94/100 dmarc monitor-only

sector finance type homepage

HTML metadata

Title: CQG | Homepage
Description: Technology solutions for financial markets. CQG is helping companies solve business challenges and improve customer experiences. We've been doing it for 40 years.
Language: en
Generator: Drupal 10 (https://www.drupal.org)
Canonical: https://www.cqg.com/

Technology

Server: Apache
CMS: Drupal

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Registration

Registrar

Network Solutions, LLC

Created

1993-08-27

Expires

2034-08-26 3021 days left

Updated

2024-08-26

Name servers

ns4.cqgnet.com
ns5.cqgnet.com

DNS records live

NS

ns4.cqgnet.com
ns5.cqgnet.com
ns6.cqgnet.com
ns7.cqgnet.com

MX

3 d116702a.ess.barracudanetworks.com
5 d116702b.ess.barracudanetworks.com

Email authentication partial

SPF

v=spf1 mx ip4:172.16.0.0/12 ip4:208.48.16.0/24 ip4:4.34.60.0/24 ip4:38.97.239.0/24 ip4:195.166.124.0/24 include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com include:mail.zendesk.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarcreports@cqg.com

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQ1WFNSordHq5fspSwlYpmp8TmPYu4GvOJOm/u7UbREQqY4Glcawfwk+2G7l6vOpU34u65lAdPJNdNL7g9…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnu7YN+QSWRPy9pbmxfdayxjTmOCkZ/uzlI6cMJG/+B1vF0PqdYBJDvCM/0htaqvMrpryyb2SaSadUPAJk…

selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2025-05-20 to 2026-06-21

Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.cqg.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.jquery.com *.twitter.com cdn.syndication.twimg.com *.google-analytics.com *.google.com *.gstatic.com *.googleapis.com *.jsdelivr.net *.cqg.com *.amazonaws.com *.zdassets.com *.zopim.com *.ckeditor.com *.wistia.com api.smooch.io *.googletagmanager.com *.recaptcha.net wasm-eval js.sentry-cdn.com; object-src 'self'; style-src 'self' 'unsafe-inline' *.twitter.com *.jsdelivr.net *.mailchimp.com *.twimg.com *.googleapis.com *.ckeditor.com *.gstatic.com *.zendesk.com *.googletagmanager.com *.recaptcha.net; img-src 'self' *.google.com *.google-analytics.com *.googletagmanager.com *.twitter.com *.twimg.com data: *.zopim.io *.gstatic.com *.googleapis.com *.ckeditor.com *.wistia.com embedwistia-a.akamaihd.net api.smooch.io *.zendesk.com; media-src 'self' *.zdassets.com blob: data; frame-src 'self' *.twitter.com *.youtube.com *.google.com *.cqg.com *.recaptcha.net *.googletagmanager.com *.doubleclick.net webfacet.cqg.com; frame-
strict-transport-security: max-age=31536000; includeSubDomains