devir.es

.es crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 1567 ms crawled 2026-05-06

US · 104.26.7.169 · AS13335 Cloudflare, Inc.

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title: Devir
Language: es
Generator: Powered by Slider Revolution 6.6.7.1 - responsive, Mobile-Friendly Slider Plugin with comfortable drag and drop interface.

Technology

CDN: Cloudflare
CMS: Gatsby

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (6)

devirinvestments.s3.eu-west-1.amazonaws.com×40
fonts.googleapis.com×5
chimpstatic.com×1
fonts.gstatic.com×1
maxcdn.bootstrapcdn.com×1
www.googletagmanager.com×1

Social

DNS records live

NS

nitin.ns.cloudflare.com
thea.ns.cloudflare.com

MX

10 devir-es.mail.protection.outlook.com

TXT

_dmarc.devir.es 3600 IN TXT "v=DMARC1; p=none"

Verified for

Ahrefs
Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvr/V3a2b0fQpNZU4mpwB7WhuX/64+lQcnBysyNi0Vr95+2HpiMuPoJqoKsW3Cc8Qm2viZhN14yJ0tQ…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtykl76IjH3GCSUMbD/1mu9iDmDODMIjQXpwU/CkWzQ2KG2t7hQfaWxvrtOdmV/zMLtJUwQGscnCDGr…

selectors probed

Certificate (current)

WE1

from 2026-04-02 to 2026-07-01

Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://devir.es/

present

content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing HSTS
missing Content Security Policy
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy-report-only: font-src *.googleapis.com *.gstatic.com *.fontawesome.com maxcdn.bootstrapcdn.com https://fonts.gstatic.com 'self' data: *.stripe.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.link.com fonts.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com https://www.facebook.com *.mercadopago.com *.mercadolivre.com *.mercadolibre.com *.mercadolibre.com.br https://mercadopago.com.br *.mercadopago.com.br *.mlstatic.com 'self' www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com *.f

Links to (7)

Linked from (1)

lexludimalacitana.es×3