indexo.dev

dafy-assurance.com

.com crawl

First seen 2026-04-17 · Last seen 2026-05-12 · ok HTTP/1.1 200 1762 ms crawled 2026-05-12

FR · 77.72.89.123 · AS30781 Free Pro SAS

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title
Daf'assur vous propose une assurance complète et adaptée pour votre moto achetée dans le réseau DAFY Moto.
Description
Daf'assur vous propose une assurance complète et adaptée pour votre moto achetée dans le réseau Dafy Moto - Devis d'assurance en 2 minutes et souscription 100% en ligne

Technology

Server
Microsoft-IIS
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • ajax.googleapis.com×1
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • kit.fontawesome.com×1
  • www.google.com×1
  • www.googletagmanager.com×1

Registration

Registrar
OVH sas
Created
2021-06-03
Expires
2026-06-03 13 days left
Updated
2025-06-04
Name servers
  • dns15.ovh.net
  • ns15.ovh.net

DNS records live

NS
  • dns15.ovh.net
  • ns15.ovh.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 4 TXT records
  • 1|www.dafy-assurance.com
  • _d800ln8ff2hhjb3wgco8o6aduwmt5mm
  • k8zyzvs3jdf5z4k9mbd1kldjbd3rfzdb
  • qw1rdy7rhjggn6fvds1l86q9wsccq09q
Verified for
  • Brevo

Email authentication partial

SPF
v=spf1 ip4:77.72.89.142 ip4:77.72.89.134 ip4:94.100.173.134 include:_spf.google.com include:spf.mailjet.com include:spf.sendinblue.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com;pct=100
policy: none (monitoring only)
DKIM
  • google: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNxImEIpcEA1FSDYGmEo/Bwgipn94YTXSdeMQjQ1c/Q+HbxuayX6SjqfIXbqoCZKmcRC7ukc7Udt9/KF…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current) wrong cert

Trust Provider B.V. TLS RSA EV CA G2
from 2025-05-13 to 2026-05-23
Expires in 2 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.dafy-assurance.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ajax.googleapis.com https://www.googletagmanager.com https://www.google.com https://googleads.g.doubleclick.net https://www.gstatic.com https://connect.facebook.net https://www.google-analytics.com https://widget.trustpilot.com https://cdn.trustindex.io https://*.paybox.com https://rum-static.pingdom.net https://*.axept.io https://*.fma.fr
strict-transport-security
max-age=15552001; includeSubDomains; preload

Links to (2)

Linked from (1)