indexo.dev

creditfoncier.fr

.fr crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 9233 ms crawled 2026-05-16

FR · 91.135.181.238 · AS213466 BPCE S.A.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Accueil - Crédit Foncier
Language
fr-FR
Canonical
https://www.creditfoncier.fr/

Open Graph

url
https://www.creditfoncier.fr/
title
Accueil - Crédit Foncier
locale
fr_FR
site name
Crédit Foncier

Technology

CMS
WordPress

Registration

Registrar
DOMAINOO
Created
1997-01-13
Expires
2028-02-05 626 days left
Updated
2026-02-11
Name servers
  • a.ns.domainoo.fr
  • b.ns.domainoo.fr
  • c.ns.domainoo.fr
  • d.ns.domainoo.fr

DNS records live

NS
  • a.ns.domainoo.fr
  • b.ns.domainoo.fr
  • c.ns.domainoo.fr
  • d.ns.domainoo.fr
MX
  • 5 mail-in.protection.bpce-it.fr
TXT
Show 24 TXT records
  • vp9szxt0s0lrv37t79rllsxgcb0q6q6s
  • MQhVq4VKj05gO4mDqcDWdSsLv1oSqivhNWHSTdHySY5nMPQyy7F63ye6k7n7KyCc9+8xNlFOpFYNkPxFMio/FA==
  • MS=ms71761244
  • 1sydvtxvj2w2rtnybh2f0hsj2pw9jxz0
  • 51p2fqvd4zxm8t951q1cn0yqdvsh5y66
  • _xolkigwa3zi6d3gx6f808di9765fldv
  • google-site-verification=BoLFvpvzVb9oU9oDnuvC_6mSQLvlJH8q4B-G48CqXPY
  • g958j4z7p2bnp007h3600byg90m3g9lr
  • _globalsign-domain-verification=QUU_RRrRqjHr4TKR0rR8cWLBVDJyWj3IeIBtnulmCE
  • vnlbqv7bqq6h8w24vzwdf8mljc6np155
  • _rks41pxu7y0bj7yux0ymilewrmp7jo3
  • fdeIIWX8CFPQD3P9VlgOLh9Atqo5bAggi3/Dok0p+coOAjTZenzvdfgfF0VdtxVuSbnmSrdVxSryk7SCBnViAw==
  • MS=ms30056904
  • google-site-verification=1i8Dhw1W09SXO-RRRQfZ7qNnpbBxTvgWaSLw5JmowjY
  • _globalsign-domain-verification=gQeAAcbGvpqLedhKEVmFxoNOF0sbgQr0N5LbFeZQ2f
  • google-site-verification=C6NKzZD2Yf4znhwuo5GZs6abTeakM80mdEaUnp2GkPA
  • _ytgs4siz1wu4l94bxk4hc8ws01ltshb
  • 0rl9ksxm6jb9pzxzgxdvs68xrp5ml2cg
  • 3kjwldm04zsxsfljxn8njpqvxm3dcb9b
  • apple-domain-verification=loeEtPfpdghyPRS5
  • google-site-verification=uwJGwFF5OfiUTkiWLCnCOatt3FZNzlFz6rcRFxNtGWU
  • docusign=3d6140a0-6951-4c37-af62-c13fa494119f
  • google-site-verification=kkSQPgH6QDEHOQE2afU9NsDPdVKbgWSHxZjF5w-cQ-8
  • _globalsign-domain-verification=wPCrzmLKFzbpfZ-Ef662JuB_keLOgvH__eBExiKqRy

Email authentication strong

SPF
v=spf1 include:_spf.bpce-it.fr -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:2478bdc8@inbox.eu.redsift.cloud; ruf=mailto:2478bdc8@inbox.eu.redsift.cloud; adkim=s; aspf=s; fo=0; rf=afrf; ri=3600
policy: reject (enforced) · sp=reject
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsK0rFsJwDd+vMBOKR9f17bsgWz142ImjkveGwBMXkvN1RKrXjv7QT3sffxEJwi5J26Tv70p1Hj6XPzYp8q…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDlzpznlZi9ltqs0ucd+7GIeXx0/OypYAjc3rxWxV4xqSIrpGgOhHKnd8iFd4YLpYt/QC595l6U3ZFg4+2I7bYFyk…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-09-02 to 2026-10-02
Expires in 135 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.creditfoncier.fr/

present
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
sameorigin, sameorigin
x-content-type-options
nosniff, nosniff

Links to (5)

Linked from (1)