indexo.dev

gis-ltd.co.uk

.uk crawl

First seen 2026-04-16 · Last seen 2026-05-14 · ok HTTP/1.1 200 1043 ms crawled 2026-05-11

CH · 194.124.233.122 · AS3303 Bluewin

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
GIS Ltd - Electric chain hoists and complete crane systems | GIS Lift Turn Move Ltd
Description
GIS Ltd have been supplying lifting solutions via electric chain hoists, control systems and manual hoists since 2004, Over the years, we have been involved with special applications in most market segments such as the entertainment industry or wind power.
Language
en
Translations
  • en

Technology

Server
nginx

Third-party hosts loaded (1)

  • webcache-eu.datareporter.eu×2

Social

Contact

Email
Phone

Registration

Registrar
COREhub, S.R.L.
Created
2022-12-20
Expires
2032-12-20 2406 days left
Updated
2026-04-09
Name servers
  • ns1.avectris.ch.
  • ns2.avectris.ch.

DNS records live

NS
  • ns1.avectris.ch
  • ns2.avectris.ch
MX
  • 0 gisltd-co-uk0i.mail.protection.outlook.com
TXT
  • "google-site-verification=q0WT7aROWcpqkH5PVBHkE5w7MN4TZRSmJrMs6NJDvaM"
  • "google-site-verification=9bN31IjaVf060RLX7f_cv0u69ing6NXRjGtsXVukBoA"
  • "MS=ms35206705"

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlo5o5ySbtfVBVjUJkKML6ffwLoAwnFiT1I66MW6Ne7BKaCNtuHVV+4gIV9VI6YDx1kixH8/iwTs1my…
selectors probed

Certificate (current)

R12
from 2026-04-01 to 2026-06-30
Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://gis-ltd.co.uk/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'report-sample' 'unsafe-inline' 'unsafe-eval' https://*.instride.ch https://*.mapbox.com https://unpkg.com https://youtu.be https://*.youtube.com https://*.pimcore.org https://*.gstatic.com https://*.googleapis.com https://*.google-analytics.com https://*.datareporter.eu https://*.google.com https://*.googletagmanager.com https://*.doubleclick.net https://*.googleadservices.com https://*.gstatic.com https://snap.licdn.com; style-src 'self' 'unsafe-inline' 'report-sample' https://api.mapbox.com/ https://fast.fonts.net https://*.datareporter.eu https://*.googletagmanager.com https://fonts.googleapis.com; object-src 'none'; base-uri 'self'; connect-src 'self' https://*.instride.ch https://*.mapbox.com https://*.friendlycaptcha.com https://*.googleapis.com https://*.google-analytics.com https://*.doubleclick.net https://*.googleta
strict-transport-security
max-age=15768000; includeSubDomains

Links to (6)

Linked from (2)