ducast.com
ducast.com
HTML metadata
Technology
- Server
- Sucuri
- jQuery
- 3.4.1 known XSS (<3.5)
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (9)
- cdnjs.cloudflare.com×2
- maxcdn.bootstrapcdn.com×2
- ajax.googleapis.com×1
- code.jquery.com×1
- fonts.googleapis.com×1
- img1.wsimg.com×1
- www.facebook.com×1
- www.google.com×1
- www.googletagmanager.com×1
Social
Contact
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2002-04-01
- Expires
- 2027-04-01 304 days left
- Updated
- 2026-04-02
- Name servers
-
- pdns03.domaincontrol.com
- pdns04.domaincontrol.com
DNS records live
- NS
-
- pdns03.domaincontrol.com
- pdns04.domaincontrol.com
- MX
-
- 0 ducast-com.mail.protection.outlook.com
- Verified for
-
- Atlassian
Email authentication partial
- SPF
-
v=spf1 include:70xe3wfzt.spf.checkpoint-spf.com include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=none; pct=100; rua=mailto:thl1@me.cp-dmarc.compolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCk3OoAWIDHn888M5KRltIumxeuIIZPL1H2vX1plSocGtfy6+iC7jzdQ1cza3vQGY1JIg88GDbZkD08wE/8H…
selectors probed - selector1:
Certificate (current)
Go Daddy Secure Certificate Authority - G2
Expires in 27 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
upgrade-insecure-requests;, default-src 'self' https: data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;