enbecom.net

HTML metadata

Title: Web Hosting London UK, Domains, Design, Security, Marketing - Enbecom
Description: London based provider of web design, domains, hosting, servers, SSL, site maintenance, marketing and other website services since 2002.
Language: en

Open Graph

url: https://www.enbecom.net
title: Enbecom - Web Hosting, Domains, Design, Security, Marketing and more.
site name: Enbecom
description: London based provider of web design, domains, hosting, servers, SSL, site maintenance, marketing and other website services since 2002.

Technology

CDN: Cloudflare
CMS: Joomla
jQuery: 3.6.1

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (6)

ajax.googleapis.com×1
api.ecologi.com×1
consent.cookiebot.com×1
js.createsend1.com×1
widget.trustpilot.com×1
www.googletagmanager.com×1

Social

Contact

Phone

+442070998730

Registration

Registrar

Easyspace Limited

Created

2002-08-04

Expires

2027-08-04 429 days left

Updated

2025-04-02

Name servers

nelci.ns.cloudflare.com
tom.ns.cloudflare.com

DNS records live

NS

nelci.ns.cloudflare.com
tom.ns.cloudflare.com

MX

0 mail.enbecom.net

Email authentication partial

SPF

v=spf1 +mx +a ip4:3.9.233.227 ip4:18.170.234.62 ip4:18.133.61.153 ip4:51.195.227.245 ip4:18.135.132.123 include:_spf.createsend.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:1724f5c547a34834a1c54abecce3aceb@dmarc-reports.cloudflare.net

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iu4vzLfQ8xk2DL1vJ2y8RwGYubFWT7PHyvxRKE/V79ruja/3pvnDa6DDoa+koYM3FMwC/WZ4UsrV5…

selectors probed

Certificate (current)

WE1

from 2026-05-22 to 2026-08-20

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.enbecom.net/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:;
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: default-src 'self'; connect-src 'self' *.hcaptcha.com *.paypal.com *.pvnsolutions.com *.tradedoubler.com *.cookiebot.com gravatar.com *.googlesyndication.com *.doubleclick.net *.twitter.com *.stripe.com *.purechat.com *.facebook.com *.google.com *.google-analytics.com; child-src 'self' *.hcaptcha.com *.paypal.com *.tradedoubler.com *.doubleclick.net *.trustpilot.com *.vimeo.com *.stripe.com *.facebook.com *.youtube-nocookie.com *.youtube.com *.google.com *.twitter.com *.cookiebot.com; style-src 'self' *.hcaptcha.com *.twitter.com *.twimg.com *.googleapis.com *.google.com *.youtube.com 'unsafe-inline'; script-src 'self' *.hcaptcha.com *.paypal.com *.tradedoubler.com *.stripe.com *.trustpilot.com *.gstatic.com *.purechat.com *.doubleclick.net *.cookiebot.com *.googleadservices.com *.googletagmanager.com *.cloudflare.com *.createsend.com *.createsend1.com *.googleapis.com *.google.com *.facebook.net *.facebook.com *.google-analytics.com *.twitter.com *.ads-twitter.com *.youtube.com *.twim