indexo.dev

enable.org.uk

.uk crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 1197 ms crawled 2026-05-31

GB · 20.90.134.26 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Enable Home
Description
Enable support people who have a learning disability, including their friends, family and anyone else who cares for them. We help people to enjoy the health, education, human rights and opportunities they deserve.
Language
en
Canonical
https://www.enable.org.uk/

Open Graph

title
Enable Home
description
Enable support people who have a learning disability, including their friends, family and anyone else who cares for them. We help people to enjoy the health, education, human rights and opportunities they deserve.

Technology

CDN
Azure Front Door
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Social widgets
  • YouTube Embed

Third-party hosts loaded (4)

  • fonts.googleapis.com×2
  • www.browsealoud.com×1
  • www.googletagmanager.com×1
  • www.youtube.com×1

Social

DNS records live

NS
  • ns0.phase8.net
  • ns1.phase8.net
  • ns2.phase8.net
MX
  • 5 enable-org-uk.mail.protection.outlook.com
TXT
  • /0M2HB8IWVmsXmVXNtwSedcdAuKsg20EN7CB66XiLPHgvqahUbqizLmsud1CIx2YT4elo0C3j0vm0NXRka5yPA==
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com mx include:cmail.com include:_spf.eploy.net include:spf.mtcserver.com include:outboundmail.blackbaud.net include:spf-eu.emailsignatures365.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine
policy: quarantine
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCpjhiLsW1vUCOV5WMRNKRp+wbTT8ix5RhIVyPLcenfx2Hpz8CnoOTTB4TPTwOAowtOTJbAzUcw8r3MoQDkB5…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-02-25 to 2026-08-26
Expires in 86 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.enable.org.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SameOrigin
x-content-type-options
nosniff
content-security-policy
default-src 'self';script-src 'self' 'unsafe-inline' 'nonce-7qv23aBUbmGUzif8+HPLf+4R' 'unsafe-eval' https://cdne-enable-stage.azureedge.net https://media.enable.org.uk https://media-stage.enable.org.uk https://media-prod.enable.org.uk https://www.googletagmanager.com https://js.monitor.azure.com *.umbraco.com maps.googleapis.com https://www.google.com https://www.gstatic.com https://www.browsealoud.com https://apis.google.com https://maps.googleapis.com https://www.gstatic.com https://*.googletagmanager.com https://www.googleadservices.com https://*.g.doubleclick.net https://bbox.blackbaudhosting.com https://plus.browsealoud.com https://*.speechstream.net https://wikisum.texthelp.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdne-enable-stage.azureedge.net https://media.enable.org.uk https://media-stage.enable.org.uk https://media-prod.enable.org.uk https://bbox.blackbaudhosting.com https://www.browsealoud.com https://plus.browsealoud.com;img-src 'self' http
strict-transport-security
max-age=31536000; includeSubDomains

Links to (4)

Linked from (1)