eurostar.com
HTML metadata
Technology
- CDN
- Fastly
- CMS
- Next.js
Third-party hosts loaded (4)
- cdn.sanity.io×23
- c9e4474cd947.eu-west-1.captcha-sdk.awswaf.com×1
- eus.cdn-v3.conductrics.com×1
- www.google.com×1
Social
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 1995-07-10
- Expires
- 2027-07-09 415 days left
- Updated
- 2026-03-23
- Name servers
-
- ns-1442.awsdns-52.org
- ns-1583.awsdns-05.co.uk
- ns-419.awsdns-52.com
- ns-785.awsdns-34.net
DNS records live
- NS
-
- ns-1442.awsdns-52.org
- ns-1583.awsdns-05.co.uk
- ns-419.awsdns-52.com
- ns-785.awsdns-34.net
- MX
-
- 10 eu-smtp-inbound-1.mimecast.com
- 10 eu-smtp-inbound-2.mimecast.com
- TXT
-
Show 22 TXT records
apple-domain-verification=1LP800h47QMDAW6wMS=ms44890567facebook-domain-verification=9g2mtcq3vu2lpj329i003b4smzd7z9abuseipdb-verification=dLfhNUdhv32F32Gj5hzrNBQHa6ZVGThmS8/Ebt8RkMMGjNCIkVzNAQ4h4pzaK3X/fX4VvQCH0+fT7P7qlN+vdvzBChxbMg==atlassian-domain-verification=UEh9QiFsMXbbVOyDoGxAaoF4egt0Fg78yrpYn8HpCklohHKxdHE27cISkB9CwhasaAOauJ2XYD/hlcg2/pz7DZIMAcODBarwGDoYZYkQ9JLn7g0wiw13POO/v52MXQdaCYgNfAZ0W2uTdKjSZkxtDg==MS=ms23832078google-site-verification=x5si4j_Yg7m0oFWUfLUiqJqRFpQ3JBs7k_3_6ttmuI0kkscth6kh4bkgz282zl6sbnxcq0smz02facebook-domain-verification=9dcxlxm3u80xmaxqle2i5mnevdykjjd5pnlpcbbsy27vqys5n7b2j923gck03yyvds9m1rzlcnlzpf9j2dwxgjvjdkjdx3google-site-verification=N0ErwWemR2HVd9eORKQZSANhrQYtrEXefdKi67pKcuwglobalsign-domain-verification=jpcnVg6kuHYyEz5op6ZzxI2E53gePoVqca7RgL0aNqgoogle-site-verification=qwpAv07SainKLo3Sl47y2qQlDwVabSoNEyuP6tmfSUMc5sq8cd2xwr7c4kfwy4b9hxy8s293vn3v=spf1 include:eu._netblocks.mimecast.com include:_spf.salesforce.com include:amazonses.com include:servers.mcsv.net include:_spfext.vsct.fr include:_spf.panelportal.com include:_spf.createsend.com include:spf1.formassembly.com ip4:194.78.106.244 ip4:81.246.124.130 ip4:217.108.85.62 ip4:77.241.89.57 ip4:194.78.12.224/27 -all5vvffynf7cjfvzqmy1nx5hnr7bpv23jbg4mw9dsfzqdnsj9scklqpcs81j529cy41LP800h47QMDAW6wSFMC-ZiUQqlHYRHPEMJk-U9qZdSHTZF-Gc8K8cocZGjs_
Certificate (current)
R12
Expires in 54 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- cross-origin-opener-policy
- findings
-
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://static.eurostar.com https://www.eurostar.com; frame-ancestors 'self' https://cms.eurostar.com https://eurostar.moment.tech https://onboard.eurostar.com; child-src blob: 'self' https://*.doubleclick.net https://ams.creativecdn.com https://api.prod.eurostar.com https://checkoutshopper-test.adyen.com https://console-d2-eus-v3.conductrics.com https://d6tizftlrpuof.cloudfront.net https://insight.adsrvr.org https://match.adsrvr.org https://static.eurostar.com https://www.facebook.com https://www.google.com https://www.paypal.com https://www.paypalobjects.com https://www.youtube-nocookie.com https://www.youtube.com https://campaigns.lucky-cycle.com https://www.google.com https://recaptcha.google.com; connect-src 'self' https://*.awswaf.com https://*.contentsquare.net https://*.doubleclick.net https://*.eurostar.com https://*.launchdarkly.com https://1wyn2xo2.apicdn.sanity.io https://adservice.google.com https://analytics.google.com https://analytics.tiktok.com https- strict-transport-security
max-age=31536000; includeSubDomains- cross-origin-opener-policy
same-origin
Links to (10)
- google.com×2
- sanity.io×2
- facebook.com×2
- instagram.com×2
- linkedin.com×2
- youtube.com×2
- x.com×2
- tiktok.com×2
- apple.com×2
- metropolitan-eurostar.com×1