embrogobrand.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Next.js
- Analytics
-
- Cloudflare Insights
- Google Tag Manager
Third-party hosts loaded (3)
- cdn.durable.co×11
- static.cloudflareinsights.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- Tucows Domains Inc.
- Created
- 2022-02-24
- Expires
- 2027-02-24 280 days left
- Updated
- 2026-02-27
- Name servers
-
- ns-cloud-e1.googledomains.com
- ns-cloud-e2.googledomains.com
- ns-cloud-e3.googledomains.com
- ns-cloud-e4.googledomains.com
DNS records live
- NS
-
- ns-cloud-e1.googledomains.com
- ns-cloud-e2.googledomains.com
- ns-cloud-e3.googledomains.com
- ns-cloud-e4.googledomains.com
- MX
-
- 1 mx.embrogobrand.com.cust.b.hostedemail.com
Email authentication partial
- SPF
-
v=spf1 include:_spf.hostedemail.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=nonepolicy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
WR1
Expires in 70 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
Header values
- referrer-policy
origin- x-frame-options
ALLOWALL- permissions-policy
fullscreen=*- x-content-type-options
nosniff- content-security-policy
default-src * data: blob: http: https: 'self' https://*.durable.co https://*.durable.com 'unsafe-inline' *.durable.co *.durable.com 'unsafe-eval';- strict-transport-security
max-age=15552000; includeSubDomains- cross-origin-opener-policy
cross-origin- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
cross-origin