dhigroup.com

HTML metadata

Title: DHI - We enable a sustainable future for water
Description: Working within the entire water cycle, we innovate new ways to use, manage and live with water and protect water-related ecosystems.
Language: en
Canonical: https://www.dhigroup.com

Open Graph

title: DHI - We enable a sustainable future for water
site name: DHI
description: Working within the entire water cycle, we innovate new ways to use, manage and live with water and protect water-related ecosystems.

Technology

CDN: Azure Front Door
CMS: Next.js

Third-party hosts loaded (1)

policy.app.cookieinformation.com×1

Social

Registration

Registrar

EuroDNS S.A.

Created

1997-07-07

Expires

2026-07-06 48 days left

Updated

2025-06-30

Name servers

ns1.eurodns.com
ns2.eurodns.com
ns3.eurodns.com
ns4.eurodns.com

DNS records live

NS

ns1.eurodns.com
ns2.eurodns.com
ns3.eurodns.com
ns4.eurodns.com

MX

10 dhigroup-com.mail.protection.outlook.com

TXT

Show 9 TXT records

atlassian-domain-verification=fd/Ije1HOCoNWB6pBzBoBF0G79I/Prtx8T2OrEMxZ/xZiTBgsgjcLaeTLsh2OAEi
771D9154788FFAE2CB6A1AA7EAD99BA4788538A0E2D23B802085AC4EDA252BDF
d365mktkey=1ia8vr5fb2pbqhk9vucoo62sz
d365mktkey=2cu76ow1iybczna08iyh4hz3r
d365mktkey=MuGVbBjW8rZH1JS310LSUd2XN5xYYk5xyEe6zAlMEw8x
google-site-verification=QYc-b82WyZ7XdB5oUMKa6ckpWtB4kZdoQDDpjwMpD-g
mGIP3QCGIx94/ZInVWTpBJeMVRL3+VTKDuG6L85zpUzxRfix7H9DnnCTvJsX/TlW8P3eYUBfw+rW6GfHt3iJig==
miro-verification=d5ccfbce6709aa40b120afd4c06bb5c9345d5624
msfpkey=6f6v6ldgvao5wx99u7ipkd1ga

Email authentication strong

SPF

v=spf1 ip4:193.3.62.0/24 ip4:35.159.41.137 ip4:51.144.133.188 include:spf.protection.outlook.com include:spf.mandrillapp.com include:spf.defgo.com include:sendgrid.net a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:d1oinbhj19@rua.powerdmarc.com; ruf=mailto:d1oinbhj19@ruf.powerdmarc.com; fo=1;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDUxqKxyR7zbHvL9UguSHtoYGflVWA6qAxCEwfw+P6qEmyYS4VlbO4yxVfK+D3J/zFZ5/e184Nem/sfdgKl/5…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1CjQozvvvR6Awj8A18IdbRHa1jya8IL+Dw/s7I8aV/9G/Hwt+r/QraB9hvY5HazbaM7nwt3SP7VImz…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-03-01 to 2026-09-02

Expires in 106 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.dhigroup.com

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer
x-frame-options: DENY
permissions-policy: *
x-content-type-options: nosniff
content-security-policy: default-src 'self' https:;script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://player.vimeo.com/api/player.js https://policy.app.cookieinformation.com https://www.youtube.com https://mktdplp102cdn.azureedge.net https://cxppusa1formui01cdnsa01-endpoint.azureedge.net https://assets-eur.mkt.dynamics.com https://public-eur.mkt.dynamics.com https://cxppeur1rdrect01sa02cdn.blob.core.windows.net *.svc.dynamics.com/f *.svc.dynamics.com/t *.svc.dynamics.com/t/w https://dhigroup.matomo.cloud https://cdn.matomo.cloud/dhigroup.matomo.cloud/container_HH5X4G0y.js https://cdn.matomo.cloud/dhigroup.matomo.cloud/matomo.js;style-src 'self' 'unsafe-inline' *.googletagmanager.com *.googleapis.com https:;font-src 'self' *.gstatic.com data: https:;img-src 'self' *.googletagmanager.com data: https:;object-src 'self' 'unsafe-inline' *;frame-ancestors 'none';base-uri 'self';form-action 'none';
strict-transport-security: max-age=63072000; includeSubDomains; preload