indexo.dev

gatewayfirst.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-11 · ok HTTP/1.1 200 1891 ms crawled 2026-05-06

US · 15.197.167.90 · AS16509 Amazon.com, Inc.

Reputation 97/100 dmarc monitor-only

Classifying

HTML metadata

Title
Gateway | Home
Description
At Gateway, we weave the knowledge and expertise of our local mortgage and banking professionals together with state-of-the-art technology to help you achieve your financial goals. Backed by the powerful resources of a national mortgage company, our goal is to make your banking and homebuying needs easy, reliable, and fast. Gateway’s focus on strengthening families drives our commitment to the communities we serve.
Language
en
Canonical
https://www.gatewayfirst.com

Technology

CDN
Netlify
CMS
Next.js
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts

Third-party hosts loaded (3)

  • images.ctfassets.net×4
  • use.typekit.net×1
  • www.googletagmanager.com×1

Contact

Email
Phone
Address
st Bank. All rights reserved.Member FDIC. Equal Housing LenderNMLS 7233

Registration

Registrar
GoDaddy.com, LLC
Created
2018-04-27
Expires
2027-04-27 343 days left
Updated
2026-04-27
Name servers
  • ns57.domaincontrol.com
  • ns58.domaincontrol.com

DNS records live

NS
  • ns57.domaincontrol.com
  • ns58.domaincontrol.com
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
TXT
Show 5 TXT records
  • docusign=6bde485f-abb3-43d2-aceb-9f4fd3540704
  • apple-domain-verification=FLz8DJBBpbjmx4dwQNPti2vy6yIw7tkGyFqk-VGk1nw
  • google-site-verification=2cACosImWdTaMJslytlWjSbdxADpv0P0c5sCgH3DSUo
  • 0ed1fe018ac36a7866d1d9495fb1fb52393e5b2389
  • apple-domain-verification=98UaAYpFwBcbkTAH

Email authentication strong

SPF
v=spf1 include:spf1.gatewayfirst.com a:_mailhosts.swbc.com include:spfref.jackhenry.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:2669c7b683f3286@rep.dmarcanalyzer.com; ruf=mailto:2669c7b683f3286@for.dmarcanalyzer.com; fo=1;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ZpdmlcnKUOtxgnm5AT+RUvaPS+QzxL3Bl5e9RqGtM08BFH1CcePQAfRVJizILQJH5gcEOxDjm51FKOoLl…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzs3bH2FG+MHHSxn1G29q7txK980oPLh2FLvDyEhfxTSCKFSpLGIuriUrAlpin1UXYnUTTZ1IOfPml2R1Km…
selectors probed

Certificate (current)

E8
from 2026-04-09 to 2026-07-08
Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.gatewayfirst.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src https://app.netlify.com 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://secure.wufoo.com/scripts/embed/form.js https://www.timevaluecalculators.com https://*.googletagmanager.com https://vercel.live https://va.vercel-scripts.com https://*.contentful.com https://maps.googleapis.com https://cdn01.basis.net; style-src 'self' 'unsafe-inline' https://*.typekit.net https://*.googleapis.com https://www.timevaluecalculators.com; img-src 'self' https://vimeo.com https://i.vimeocdn.com https://images.ctfassets.net https://*.google-analytics.com https://*.googletagmanager.com https://va.vercel-insights.com https://maps.gstatic.com https://*.googleapis.com https://downloads.ctfassets.net https://vercel.com https://d.agkn.com https://pixel.sitescout.com https://attribution.sitescout.com blob: data:; font-src 'self' https://use.typekit.net https://fonts.gstatic.com; object-src 'self' blob: data:; frame-src 'self' https://gfb.wufoo.com https://vimeo.com https://*.vimeo.com
strict-transport-security
max-age=31536000

Links to (3)

Linked from (3)