indexo.dev

foth.com

.com crawl

First seen 2026-04-16 · Last seen 2026-05-11 · ok HTTP/1.1 200 7303 ms crawled 2026-05-11

US · 34.70.100.58 · AS396982 Google LLC

Reputation 100/100

sector b2b services type blog

HTML metadata

Title
Full-Service Engineering | Custom Engineering Solutions | Foth
Description
A team of engineers, scientists, and problem solvers united under a common goal: your vision. We shape communities, environments, and industries by solving the toughest science and engineering challenges.
Generator
All in One SEO (AIOSEO) 4.9.6.2
Canonical
https://www.foth.com/

Open Graph

url
https://www.foth.com/
title
Full-Service Engineering | Custom Engineering Solutions | Foth
locale
en_US
site name
FOTH - Solving Our Clients' Toughest Science and Engineering Challenges
description
A team of engineers, scientists, and problem solvers united under a common goal: your vision. We shape communities, environments, and industries by solving the toughest science and engineering challenges.

Technology

Server
nginx
CMS
WordPress

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1997-03-12
Expires
2030-05-30 1471 days left
Updated
2025-10-09
Name servers
  • pdns01.domaincontrol.com
  • pdns02.domaincontrol.com

DNS records live

NS
  • pdns01.domaincontrol.com
  • pdns02.domaincontrol.com
MX
  • 0 foth-com.mail.protection.outlook.com
TXT
  • DOS+X/3/GJ2N9nod0xmXIM+6PBgNekfGnN59/L1gahbEikBltE66J/kuCqswVJpt10i2Ub6OKYlqUqL3f7gtsg==
  • docusign=f602f220-93a1-4bcf-b0bc-edb85bb40e01

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com ip4:98.100.148.12 ip4:98.100.148.20 ip4:98.100.148.3 ip4:98.100.147.85 include:_spf.vsn.voltage.com include:sparkpostmail.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:pqbqlnub@ag.dmarcian.com; ruf=mailto:pqbqlnub@fr.dmarcian.com;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDLXFzgcaNmDSu887Y/R6NcIgVSRKdfdIlTl9tE9gPND/gT1JOg/kA4vcdV2UcdyjX+PpTFyUfAYMWU+34Eua…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzethj5AxtXj/EU2dcWCV4QDPFLlwc2FpQ1uQHfVepvIROypQs7qNYBCcbnbSByS7odkX/jTNfKoBIPnl09…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuaTMXIWQBvLLuwbPH11QsPR5rcmqGVeuVqRaAQk7sr+h723LXzT3YkefjpWY0DDydOKV4E02JOvCi6vctvtAAK…
selectors probed

Certificate (current)

R12
from 2026-04-08 to 2026-07-07
Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.foth.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
Header values
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), accelerometer=(), autoplay=(self "https://*.vimeo.com" "https://*.youtube.com"), camera=(), display-capture=(), encrypted-media=(), fullscreen=(self "https://*.vimeo.com" "https://*.youtube.com"), gamepad=(), gyroscope=(), hid=(), identity-credentials-get=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
default-src https: 'unsafe-inline' wss://*.hotjar.com/api/v2/client/ws; script-src https: 'unsafe-inline' wss://*.hotjar.com/api/v2/client/ws; style-src https: 'unsafe-inline'; manifest-src none; base-uri none; form-action https://*.foth.com https://www.facebook.com/tr/;object-src none; img-src https: data:; font-src https: data:; media-src 'self'; frame-src https: 'self' https://*.vimeo.com https://*.youtube.com;
strict-transport-security
max-age=31536000

Links to (5)

Linked from (1)