indexo.dev

crick.ac.uk

.uk crawl

First seen 2026-04-15 · Last seen 2026-05-17 · ok HTTP/1.1 200 771 ms crawled 2026-05-11

GB · 194.83.182.91 · AS786 Jisc Services Limited

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
The Francis Crick Institute
Description
We are a biomedical discovery institute dedicated to understanding the biology underlying health and disease.
Language
en
Generator
Drupal 10 (https://www.drupal.org)
Canonical
https://www.crick.ac.uk/

Technology

CDN
Amazon CloudFront
Server
nginx
CMS
Drupal
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
Social widgets
  • Vimeo Embed

Third-party hosts loaded (4)

  • d1bxh8uas1mnw7.cloudfront.net×1
  • player.vimeo.com×1
  • use.typekit.net×1
  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • ns10.ja.net
  • ns11.ja.net
  • ns12.ja.net
MX
  • 10 crick-ac-uk.mail.protection.outlook.com
TXT
Show 18 TXT records
  • uber-domain-verification=38bfa4cf-30bc-42b6-a9c4-4132cfcbfc0a
  • google-site-verification=KDZEyX6vltqMomrAkKowzvsb-DQcLUvJ-KlGU_5Rhbw
  • ZOOM_verify_q82gjNFhTpuPi5e8q_dL5w
  • atlassian-domain-verification=h0XNcAd/b3jQGJkoqtm7QFqEsnGwopgxcw/83LK0JpYnUJBSt8C9kDvEljnlX5Cy
  • 0ed1fe018acfecb9cc2d6949ae98b6e4d489d628e6
  • monday-com-verification=REvdlBiBHj8scyxrbMSStYp1g3NdaH4a6xkYN4PrjU0
  • kf9yc6s0f0t8r55y75yn150yjgl35wln
  • dropbox-domain-verification=iz7fio86ug52
  • apple-domain-verification=qJO1jdcjQIWlp1k0
  • notion-domain-verification=xrH1rXm7eifgBhXy6maSHmq7XwAfFNrsKquKExSzcxV
  • canva-site-verification=Szn9IKvZiP4vZN9EL3WlOg
  • adobe-idp-site-verification=9869024634c7d3bb26d4ccc0958e53adfda4f47f9706d46e1b27695afa8e3659
  • ms-domain-verification=a58b1ae1-73b9-455a-9f0a-c4000137592b
  • jamf-site-verification=Z7AIvve_thoRkwb1LBq9kQ
  • MS=ms39250370
  • amazonses:w6tx7hxt3EzSemZWD+kaGFZ9hgiRdnQWy8e5r6OEXpY=
  • sophos-domain-verification=a9e412e1b5df6c9ba58e1b3b93c4be919d755adebd12fa683b9b027c370591d4
  • cisco-ci-domain-verification=76d4f8c7d68cca0ba4f8ac8e47f047a2f641b4c05fdb9c7e21e21507fb682857

Email authentication partial

SPF
v=spf1 ip4:212.219.94.142 ip4:217.163.7.0/24 ip4:35.176.247.226 ip4:194.83.182.0/24 ip4:54.229.2.165 ip4:52.30.130.201 ip4:52.17.45.98 ip4:52.16.190.81 ip4:52.56.172.10 ip4:35.176.178.103 ip4:34.246.127.48 ip4:37.98.232.26 ip4:3.124.160.66 ip4:18.157.97.229 ip4:18.157.99.112 ip4:194.80.106.129 ip4:194.80.106.130 ip4:194.80.106.131 include:spf.protection.outlook.com include:_spf.elasticemail.com include:service-now.com include:amazonses.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:dmarc_agg@vali.email, mailto:dmarcreports@crick.ac.uk; ruf=mailto:dmarcreports@crick.ac.uk;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDoEQkYi2iF5b3OJN8Y1GFjtqXSi7ouXikxLpdTxir0ShR2Yo98A7LVhuKiyfj9Q2letrdejZBHYmG4pX65qm…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2b3gCBeOog28ZxBGtrGkb/YaJEh6rCmaR2HH1xk29mZPjWmBFW6/sbiY7xmZw4wvWMG5XcX/SictComVE2…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDR1eMtdrxGPRUqN2H54gAhYiL29jBlP8ygBq+oEF0GyYgcnPxbGbEkc6hv0v8lE+XICpQevjmKAAnkKB/WTeO0OC…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA OV E36
from 2025-09-19 to 2026-09-20
Expires in 124 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.crick.ac.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' *.altmetric.com *.powerbi.com *.cloudfront.net *.hotjar.com *.hotjar.io 'unsafe-eval' *.crick.ac.uk *.google.com *.google.co.uk *.google-analytics.com *.gstatic.com *.googleapis.com *.vimeo.com *.vimeocdn.com *.youtube.com *.soundcloud.com *.twitter.com *.youtube.com *.twimg.com theta360.com cdn.rawgit.com raw.githubusercontent.com *.facebook.com connect.facebook.net *.infogram.com *.googletagmanager.com i.ytimg.com data:; ; script-src 'self' 'unsafe-inline' *.altmetric.com *.cloudfront.net *.hotjar.com *.hotjar.io 'unsafe-eval' theta360.com crick.us13.list-manage.com *.mailchimp.com *.theta360.com *.google.com *.google.co.uk *.google-analytics.com *.googleapis.com use.typekit.net *.vimeocdn.com *.vimeo.com vimeo.com *.twitter.com *.twimg.com *.youtube.com *.googletagmanager.com tagmanager.google.com cdnjs.cloudflare.com cdn.rawgit.com s3.amazonaws.com/downloads.mailchimp.com/js/mc-validate.js *.cloudfront.net/assets/embed.js cdn.jsdelivr.net connect.
strict-transport-security
max-age=31536000, max-age=31536000;

Links to (6)

Linked from (6)