indexo.dev

deroyal.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 3192 ms crawled 2026-05-06

US · 209.2.64.196 · AS7029 Windstream Communications LLC

Reputation 100/100

sector manufacturing type homepage

HTML metadata

Title
HOME
Description
As a global medical manufacturer for over 50 years, DeRoyal Industries, Inc. has been committed to improving the clinical quality and economic health of its customers.
Language
en
Generator
Sitefinity 15.2.8424.0 DX

Open Graph

title
HOME
site name
SF_DeRoyalcom
description
As a global medical manufacturer for over 50 years, DeRoyal Industries, Inc. has been committed to improving the clinical quality and economic health of its customers.

Technology

Fonts
  • Google Fonts

Third-party hosts loaded (1)

  • fonts.googleapis.com×2

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1995-07-08
Expires
2026-07-07 47 days left
Updated
2025-07-07
Name servers
  • ns45.domaincontrol.com
  • ns46.domaincontrol.com

DNS records live

NS
  • ns45.domaincontrol.com
  • ns46.domaincontrol.com
MX
  • 5 usb-smtp-inbound-1.mimecast.com
  • 8 usb-smtp-inbound-2.mimecast.com
TXT
  • v=spf1 ip4:209.2.64.213 ip4:209.2.64.195 ip4:207.10.34.2 include:_spf.salesforce.com ip4:149.72.182.166 ip4:149.72.39.215 include:spf.protection.outlook.com include:usb._netblocks.mimecast.com ~all
  • 5kse1mkl6cd6ffbsdel34rc5ob
  • MS=AF7F95A0A78BA1F0E95CDEE8C2365E1664A5CF4E

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2026-03-06 to 2026-09-20
Expires in 122 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://deroyal.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src *.googleapis.com *.gstatic.com www.google.com apis.google.com *.google-analytics.com connect.facebook.net ajax.aspnetcdn.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://dec.azureedge.net/ munchkin.marketo.net cdnjs.cloudflare.com 'self' 'unsafe-inline' 'unsafe-eval' web-chat.nativechat.com cdn.ampproject.org js.hs-scripts.com js.hs-analytics.net js.hs-banner.com js.hsleadflows.net forms.hubspot.com js.hscollectedforms.net https://cdn.insight.sitefinity.com https://dec.azureedge.net https://player.vimeo.com/api/player.js https://www.youtube.com/iframe_api *.eloqua.com *.en25.com; style-src *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com platform.twitter.com/css/ *.twimg.com 'self' 'unsafe-inline' web-chat.nativechat.com https://cdn.insight.sitefinity.com https://dec.azur
strict-transport-security
max-age=31536000; includeSubDomains

Links to (5)

Linked from (1)