indexo.dev

hachettepartworks.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 5950 ms crawled 2026-05-16

US · 104.18.20.251 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector gaming type ecommerce

HTML metadata

Title
Hachette Partworks - Shop the latest partwork collections
Description
Order online our exclusive build-up model, craft, graphic novel, family and tabletop gaming collections and much more. The leader in partworks publishing.
Language
en
Canonical
/en-en/
Translations
  • es ×5
  • en ×2
  • pt ×2
  • de
  • fr
  • it
  • ja
  • pl

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Third-party hosts loaded (16)
  • widget.trustpilot.com×2
  • www.hachettecollections.com×2
  • ar.salvat.com×1
  • br.salvat.com×1
  • cdnjs.cloudflare.com×1
  • co.salvat.com×1
  • hcj.jp×1
  • kolekcja-hachette.pl×1
  • mx.salvat.com×1
  • pe.salvat.com×1
  • pt.salvat.com×1
  • www.googletagmanager.com×1
  • www.hachette-collections.com×1
  • www.hachette.de×1
  • www.hachette.it×1
  • www.salvat.com×1

Social

Registration

Registrar
Gandi SAS
Created
2005-07-11
Expires
2026-07-11 51 days left
Updated
2025-06-23
Name servers
  • abdullah.ns.cloudflare.com
  • sloan.ns.cloudflare.com

DNS records live

NS
  • abdullah.ns.cloudflare.com
  • sloan.ns.cloudflare.com
MX
  • 10 de-smtp-inbound-1.mimecast.com
  • 10 de-smtp-inbound-2.mimecast.com
TXT
  • trustpilot-one-time-verification-id=9cafb635-7c8b-45ba-8d23-f1e31b2c7ece
Verified for
  • Google
  • Meta
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a:mailing.hachette-livre.fr a:hlmail1.hachette-livre.fr a:hlmail2.hachette-livre.fr include:spf.protection.outlook.com include:de._netblocks.mimecast.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-14 to 2026-07-13
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://hachettepartworks.com/en-en/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
Header values
permissions-policy
accelerometer=(), geolocation=('self'), fullscreen=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), display-capture=('self')
x-content-type-options
nosniff
content-security-policy
default-src 'none'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' *.clarity.ms *.telebalance.tv *.my-probance.one *.privacy-center.org *.cloudflareinsights.com *.criteo.com *.googlesyndication.com *.snapchat.com *.r66net.net *.amazon-adsystem.com *.paa-reporting-advertising.amazon https://sc-static.net *.adform.net https://rules.quantcount.com https://secure.quantserve.com/ https://js.adsrvr.org https://stage-data.hipay.com https://mpsnare.iesnare.com https://libs.hipay.com https://mpsnare.iesnare.com/time.mp3 wss://mpsnare.iesnare.com/star https://mpsnare.iesnare.com/star https://rules.quantcount.com/ https://secure.quantserve.com/ https://js.adsrvr.org https://cdn.sticky.io https://mpsnare.iesnare.com https://libs.hipay.com https://mpsnare.iesnare.com/time https://marketing.hachette-partworks.com https://cdn.wishpond.net/connect.js https://u.videostep.com https://analytics.tiktok.com https://www.clarity.ms https://static.r66net.com https://k.r66net.com https://ks.invibes.com
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (6)

Linked from (1)