indexo.dev

halfords.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2698 ms crawled 2026-05-18

DE · 2.18.64.35 · AS20940 Akamai International B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Halfords UK
Description
Visit Halfords for Bikes, Sat Nav & Audio, Motoring & Car Maintenance, Touring & Camping Equipment, and lots more.
Language
en-GB
Canonical
https://www.halfords.com/

Open Graph

url
https://www.halfords.com/
title
Halfords UK
locale
en_GB
site name
Halfords UK
description
Visit Halfords for Bikes, Sat Nav & Audio, Motoring & Car Maintenance, Touring & Camping Equipment, and lots more.

Technology

CDN
Amazon CloudFront
CMS
Gatsby
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (4)

  • cdn.media.amplience.net×4
  • i1.adis.ws×2
  • cdn.cookielaw.org×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
Network Solutions, LLC
Created
1997-07-14
Expires
2034-01-14 2796 days left
Updated
2024-04-03
Name servers
  • a1-88.akam.net
  • a16-65.akam.net
  • a22-65.akam.net
  • a24-67.akam.net
  • a9-65.akam.net

DNS records live

NS
  • a1-88.akam.net
  • a16-65.akam.net
  • a22-65.akam.net
  • a24-67.akam.net
  • a9-65.akam.net
MX
  • 10 halfords-com.mail.protection.outlook.com
TXT
Show 16 TXT records
  • google-gws-recovery-domain-verification=46276607
  • _74jhx95xjrg1u02y5n0htux9kqgmxaq
  • 98dwp0mgmg64vk64dqd5v8sbpzs911bz
  • ms-domain-verification=05aff9ee-caca-4e33-9ec3-466a8c2a14ec
  • p8jqt0khx1jyr6s9z95cgvtkmr0gwqhg
  • google-site-verification=hib82yoiUpMpzxDPjiWMQ5qJULDY7CJFPDNnYvPa43U
  • google-site-verification=hqIeVG5OYQGOG9IKSbo6QshCQfGfjQql09SwNXxVDZk
  • jcpgpnxwy5d1jkycwn36xg3k80tkcq6y
  • fastly-domain-delegation-kObNf0EGOYiWNPEm-2024-01-16
  • MS=ms27800530
  • a46wkh0nmtrmiona8nwl8rzdzr0fzu
  • facebook-domain-verification=a46wkh0nmtrmiona8nwl8rzdzr0fzu
  • 0ed1fe018a5ebd804e53ca4de2882c9358845d52dc
  • rbfhbep72aj5i5gi91bnu1giuq
  • _abnq5lthhe7m93h862mn9gjvocjmhcn
  • google-site-verification=WpAiboj9N7JMYv1-TzjdrxJlNaaUkQ-SVVeN_Fe_Tic

Email authentication partial

SPF
v=spf1 a mx include:spf.protection.outlook.com a:production.eu01.halfords.demandware.net a:infrastructure.pod264.demandware.net include:eu._netblocks.mimecast.com include:_spf.salesforce.com ?all
neutral (?all)
DMARC
v=DMARC1; p=none; rua=mailto:2066b8bd4a00336@rep.dmarcanalyzer.com, mailto:dmarc-rua@halfords.co.uk; ruf=mailto:2066b8bd4a00336@for.dmarcanalyzer.com, mailto:dmarc-ruf@halfords.co.uk; fo=1;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzePi/tQ6pamo0nAxzWEdqC1CPIpTFNyDSzGjGLMkkQwGmFkqxW4SUJdtu02Drdi1rD9EyXP+BPaDRC…
selectors probed

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1
from 2025-08-12 to 2026-08-13
Expires in 85 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.halfords.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
media-src 'self' cdn.media.amplience.net washford.a.bigcontent.io cdn.media.halfords.com cdn.media.halfords.ie i1.adis.ws cdn.static.amplience.net cdn.c1.amplience.net;img-src 'self' *.commercecloud.salesforce.com i1.adis.ws cdn.media.amplience.net washford.a.bigcontent.io cdn.media.halfords.com cdn.media.halfords.ie www.halfords.com api.ecpplatform.com cdn.cookielaw.org *.adalyser.com *.googletagmanager.com *.google-analytics.com *.doubleclick.net *.linkedin.com *.facebook.com *.quantserve.com *.affec.tv *.google.com *.google.pt *.google.co.uk *.teads.tv bat.bing.net *.adnxs.com *.adsrvr.org bat.bing.com maps.gstatic.com fonts.gstatic.com *.googleapis.com *.gstatic.com *.googleusercontent.com *.bloomreach.cloud https://tiles.woosmap.com https://a.tiles.woosmap.com https://b.tiles.woosmap.com *.googlesyndication.com www.google.ro www.googleadservices.com *.contentsquare.net *.contentsquare.com c.az.contentsquare.net l.contentsquare.net https://heapanalytics.com s.yimg.com sp.analytics.
strict-transport-security
max-age=15768000
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-resource-policy
same-origin

Links to (13)

Linked from (8)