indexo.dev

creditkarma.co.uk

.uk crawl

First seen 2026-04-27 · Last seen 2026-05-16 · ok HTTP/1.1 200 12522 ms crawled 2026-05-20

DE · 104.102.61.224 · AS16625 Akamai Technologies, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Credit Score & Credit Reports at Intuit Credit Karma™ UK
Description
Intuit Credit Karma offers free credit scores, reports and insights. Get the info you need to take control of your credit.
Canonical
https://www.creditkarma.co.uk
Translations
  • en ×4
  • fr

Open Graph

url
https://www.creditkarma.co.uk
title
Credit Score & Credit Reports at Intuit Credit Karma™ UK
description
Intuit Credit Karma offers free credit scores, reports and insights. Get the info you need to take control of your credit.

Technology

Server
CK-FG-server

Third-party hosts loaded (5)

  • creditkarmacdn-a.akamaihd.net×9
  • www.creditkarma.com×3
  • www.creditkarma.ca×2
  • ck-content.imgix.net×1
  • intlck.imgix.net×1

DNS records live

NS
  • a1-204.akam.net
  • a16-64.akam.net
  • a28-65.akam.net
  • a3-67.akam.net
  • a4-66.akam.net
  • a9-66.akam.net
  • dns1.p06.nsone.net
  • dns2.p06.nsone.net
  • dns3.p06.nsone.net
  • dns4.p06.nsone.net
MX
  • 0 aspmx.l.google.com
  • 10 alt1.aspmx.l.google.com
  • 10 alt2.aspmx.l.google.com
  • 20 alt3.aspmx.l.google.com
  • 20 alt4.aspmx.l.google.com
TXT
Show 8 TXT records
  • _71qnzokschhhw7x1mlnrs0mv7mv8qe4
  • _ufntjj1cdivxc6u5xvjt4wqev9ud0ar
  • b2328d0m8zrj5twbkb5l38s9mwwct614
  • ht09rh2pb2gh53d4ndk9kscwv53b62cz
  • spycloud-domain-verification=7964799a-00f3-4eb5-9784-2e9a345c0fe0
  • txg187nvmvtffmb5z2v49q9lk630vgq1
  • yhvrzl3k026ht1b1w8cs602wzp7gx4wb
  • 0mftsd3h4jj12639vnfv5d10f2xlpq7z
Verified for
  • Google
  • Meta
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:creditkarma.co.uk._nspf.vali.email include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAtuLI8vQCmSm/KgXscVmt4M7UjJ/Y57ggMSpe5aMEfiReFwoDkNmW01HFt5K5IT9z2AQgCT1UKfye…
selectors probed

Certificate (current)

DigiCert EV RSA CA G2
from 2026-03-03 to 2026-09-18
Expires in 120 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.creditkarma.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
base-uri 'self';connect-src 'self' *.nr-data.net https://sponge.creditkarma.co.uk https://www.google-analytics.com https://region1.analytics.google.com https://creditkarmacdn-a.akamaihd.net https://stats.g.doubleclick.net https://api2.branch.io https://accounts.creditkarma.co.uk https://www.google.com https://www.google.co.uk https://*.api.intuit.com https://cdn.device-intel.a.intuit.com https://dicontent.ckapis.com;default-src *.creditkarma.co.uk https://creditkarmacdn-a.akamaihd.net;font-src https://creditkarmacdn-a.akamaihd.net;frame-src https://www.googletagmanager.com https://td.doubleclick.net https://dicontent.ckapis.com https://h.online-metrix.net;img-src 'self' 'unsafe-inline' https://creditkarmacdn-a.akamaihd.net https://intlck.imgix.net https://kpluk.imgix.net https://ck-content.imgix.net https://ckpoc.imgix.net https://ck-uk-offers.imgix.net https://www.google-analytics.com https://stats.g.doubleclick.net https://www.google.com https://www.google.co.uk https://res.cloudinar
strict-transport-security
max-age=31536000; includeSubdomains; preload

Linked from (1)