getpro.co.uk

.uk crawl

First seen 2026-04-13 · Last seen 2026-05-06 · ok HTTP/1.1 200 566 ms crawled 2026-05-06

US · 151.101.195.10 · AS54113 Fastly, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: GetPRO Performance Protein Products | GetPRO
Description: Discover GetPRO's delicious and high protein range of performance protein drinks, yoghurts and desserts. Elevate your performance on your fitness journey.
Language: en
Canonical: https://www.getpro.co.uk

Open Graph

url: https://www.getpro.co.uk
title: GetPRO Performance Protein Products | GetPRO
site name: GetPro
description: Discover GetPRO's delicious and high protein range of performance protein drinks, yoghurts and desserts. Elevate your performance on your fitness journey.

Technology

Cookie consent

OneTrust

Third-party hosts loaded (4)

static-p72053-e643882.adobeaemcloud.com×2
apps.bazaarvoice.com×1
cdn-ukwest.onetrust.com×1
cdn.channelsight.com×1

Social

Registration

Registrar

CSC Corporate Domains, Inc

Created

2019-03-18

Expires

2027-03-18 302 days left

Updated

2026-03-15

Name servers

dns1.cscdns.net.
dns2.cscdns.net.

DNS records live

NS

dns1.cscdns.net
dns2.cscdns.net

MX

10 custmx.cscdns.net

TXT

google-site-verification=NPuUssg_2B-huOvKv4cqvp5c7mCFnwjtX35biTRpoLI
google-site-verification=GPWPj2FSmaGhiP05U9uwyiojYPRoDGRND8XZygsIu40
google-site-verification=ItIZs4IPFum4sJHtnxAjlqu-NVe1190YPbTco4WM9CY

Email authentication partial

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA OV R36

from 2026-05-04 to 2026-11-19

Expires in 183 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.getpro.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.adobeaemcloud.com/; style-src 'self' *.bazaarvoice.com/ *.channelsight.com/ *.pixeltrack.it/ *.force.com/ *.teads.tv/ *.adobeaemcloud.com/ *.onetrust.com/ *.adyen.com/ *.scene7.com/ *.chargebee.com/ *.mopinion.com/ *.gstatic.com/ *.live2support.com/ *.lpsnmedia.net/ *.commander1.com/ *.bootstrapcdn.com/ *.tagcommander.com/ *.zencdn.net/ *.sharethis.com/ *.googleapis.com/ *.google.com/ https://promo.getpro.co.uk/ https://staging-getpro.hdot.uk/ *.myfonts.net/ *.youtube.com *.briteverify.com 'unsafe-inline' *.aemcs.digital4danone.com/; script-src 'self' https://js-agent.newrelic.com/ *.pixeltrack.it/ *.bazaarvoice.com/ www.youtube.com *.onetrust.com/ *.teads.tv/ *.adobeaemcloud.com/ *.adobedtm.com/ *.scene7.com/ *.channelsight.com/ *.services.visualstudio.com/ *.monitor.azure.com/ *.gbqofs.com/ ct.captcha-delivery.com js.datadome.co *.salesforce.com/ *.salesforceliveagent.com/ *.force.com/ *.adyen.com/ *.chargebee.com/ https://live2support.com/ *.googletagma
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (2)

facebook.com×2
instagram.com×2