indexo.dev

gaes.co

.co crawl

First seen 2026-04-15 · Last seen 2026-05-11 · ok HTTP/1.1 200 1748 ms crawled 2026-05-11

US · 54.147.145.233 · AS14618 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
GAES: audífonos, salud y pruebas auditivas | GAES CO
Description
Descubre GAES, multinacional líder en soluciones de audición asistida con más de 70 años de experiencia.
Language
es
Canonical
https://www.gaes.co/

Open Graph

url
https://www.gaes.co/
title
GAES: audífonos, salud y pruebas auditivas | GAES CO
locale
es_CO
site name
Amplifon
description
Descubre GAES, multinacional líder en soluciones de audición asistida con más de 70 años de experiencia.

Technology

Server
Apache
CMS
Joomla

Third-party hosts loaded (1)

  • assets.adobedtm.com×1

Social

DNS records live

NS
  • dns15.servidoresdns.net
  • dns16.servidoresdns.net
MX
  • 10 gaes-co.mail.protection.outlook.com
  • 20 mail2.gaes.co
  • 50 mail.gaes.co
TXT
Show 5 TXT records
  • spycloud-domain-verification=e74c728e-8826-4a93-988b-3f4d9a6aca07
  • MS=ms78573904
  • MS=862D1D8B743233FE4AF7C798B31ED6F459430ED2
  • dtm-domain-verification=XKZo4lZlyBPT30SFS7TLE7sLTGzFyoDJ8nBwqtXwi0Y
  • google-site-verification=aZpPnQ-fgBOqE2F82uilq-awT4nBc14VaYIjRHaYrPY

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com include:servers.mcsv.net -all
strict (-all)
DMARC
not published
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2025-09-17 to 2026-10-07
Expires in 140 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.gaes.co/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' *.hsforms.com *.hubspotusercontent.com www.google-analytics.com *.googletagmanager.com *.google.com *.cliengo.com *.zoominfo.com *.googlesyndication.com *.five9.com fonts.googleapis.com fonts.gstatic.com amplifon.d3.sc.omtrdc.net amplifon.demdex.net 11016244.fls.doubleclick.net www.youtube-nocookie.com www.facebook.com pnapi.invoca.net www.google.com lasteventf-tm.everesttech.net dpm.demdex.net *.demdex.net *.adsymptotic.com adsymptotic.com *.tt.omtrdc.net *.hscollectedforms.net *.usemessages.com; connect-src 'self' *.hsforms.com *.hubspotusercontent.com https://static.hsappstatic.net/ region1.google-analytics.com www.google-analytics.com *.googletagmanager.com *.google.com www.gaes.co *.cliengo.com *.zoominfo.com js.zi-scripts.com hemsync.clickagy.com aorta.clickagy.com maps.googleapis.com *.youtube-nocookie.com *.onetrust.com cdn.cookielaw.org *.onetrust.com api.hubapi.com *.googlesyndication.com *.bing.com *.hubspot.com *.amplifoninternal.com *
strict-transport-security
max-age=31536000; includeSubDomains

Links to (3)

Linked from (1)