indexo.dev

dmfk.co.uk

.uk crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 227 ms crawled 2026-06-02

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
dMFK | Architecture, Interiors & Design in London
Description
Some buildings shout for attention; others quietly earn it. Beautiful buildings make it look easy. They feel right. They’re subtle, approachable, informal but never accidental. They sit well in context, make people feel good, and value follows naturally. That’s the kind of architecture we’re here to make.
Language
en
Canonical
https://dmfk.co.uk/index

Open Graph

title
dMFK | Architecture, Interiors & Design in London
description
Some buildings shout for attention; others quietly earn it. Beautiful buildings make it look easy. They feel right. They’re subtle, approachable, informal but never accidental. They sit well in context, make people feel good, and value follows naturally. That’s the kind of architecture we’re here to make.

Technology

CDN
Vercel
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • qetwgl8u.api.sanity.io×2
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns0.lcn.com
  • ns1.lcn.com
  • ns2.lcn.com
MX
  • 0 dmfk-co-uk.mail.protection.outlook.com

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDoF5l6O/AY0EvR5lniMLz1XrTxisZL3eObe9DvLs+MXM3zMOeSSY59pDp78DkAjBEZBT0hx6JibEXNrQUCx9…
selectors probed

Certificate (current)

R13
from 2026-05-04 to 2026-08-02
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://dmfk.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' *.googletagmanager.com *.google-analytics.com *.mux.com cdn-cookieyes.com; style-src 'self' 'unsafe-inline' *; img-src * data: blob:; font-src 'self' *; connect-src 'self' *.sanity.io *.mux.com *.litix.io *.google-analytics.com *.googletagmanager.com cdn-cookieyes.com *.cookieyes.com; media-src 'self' *.mux.com; frame-src player.vimeo.com www.youtube.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; upgrade-insecure-requests;
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (4)

Linked from (1)

Use this data via API

Everything on this page for dmfk.co.uk is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/dmfk.co.uk" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →