healthnet.com

HTML metadata

Title

Health Net - Coverage for Every Stage of Life™

Description

Health Net provides quality affordable health plans for individuals, families, Medi-Cal members, Medicare and businesses.

Language

en

Canonical

https://www.healthnet.com/content/healthnet/en_us.html

Translations

en-us
es-us

Technology

CDN: Amazon CloudFront
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (6)

interceptor.cnc-interceptor.com×2
ajax.googleapis.com×1
assets.adobedtm.com×1
js-cdn.dynatrace.com×1
www.google.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

CSC Corporate Domains, Inc.

Created

1996-08-28

Expires

2026-08-27 100 days left

Updated

2025-11-05

Name servers

ns11.centene.com
ns13.centene.com
ns21.centene.com
ns22.centene.com

DNS records live

NS

ns11.centene.com
ns13.centene.com
ns21.centene.com
ns22.centene.com

MX

10 mxa-0020eb02.gslb.pphosted.com
10 mxb-0020eb02.gslb.pphosted.com

TXT

Show 14 TXT records

MS=C47748C444BB7FF1FE9478781B8ADE07B952D8E2
MS=ms69925893
uW+igN8yRG+04qcUPL5WcmMWrBQKQMhDhlngzWxBcjqyUpMYZEnX7PHE9xuIZSIAn3o6NNPAdmYzB3L1pj9Ghg==
_gm1ekpyfjf3wk9oyvt1r4k52zkvw4br
smartsheet-site-validation=bH1ByVljgCblTkQtKLCxoHO0T9Qk4m9D
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCN15rR55rn+NTGNHHWgs586RsXsjg5cb5ns0VOjaPysYS/FpSPlgzXYQpjMKagWncL7+iRZfD1LrcLs1cPWtksNxO6jVkt1cxSBekrNsoN4yC2NRuumR6q9btFB2u+Sbh2OOIekbajLquE/mu8aah1dj0BHBwAr3g1R8hUJivPYwIDAQAB
V=DMARC1;p=none;pct=100;rua=mailto:DMARCaggrep@Healthnet.com
adobe-idp-site-verification=1ae59985289c9123cc1c05c994517f8254e9086da7972a2235238e28339262d6
miro-verification=9a6adf1bcddc1706db1fb18f4b55f7ad0aa2f415
sending_domain897501=da4832854be1dd4cb37a963035f2b84b0e0aa2ffc6f279408d5ad83cb35e211e
MS=ms87779497
facebook-domain-verification=8rpijbe0zmjqto1uwtjkhepejr2pf7
pardot897501=246ed9d833e82e811b1b6c75e31efd867af5186ac91110928d76cd53ab8e18bb
MS=68D56F03C68BDFF911FDE33892CF0E87C4B3E17E

Email authentication strong

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; fo=1;rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com

policy: reject (enforced)

DKIM

default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rX2wdporK4uxZMzgaVabSwpGgjNRLgQ2jfWFNBE0TYp74CC0Q3He6tupJynwrsIV729VL3Xx2WstzWoE705V…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCmiyuiI2b2oIvJkY9MFvHrtahx5eYkHw4iEXdkeaca/iHuWAxjVQGbdW0VKNDCzKlTNJUjuoosPVov4EL…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDW5NhGIbrK0XdWkM1sVqtWFSDjyCmqa7oCnw/0ZKhUWeW6iCvDRWchCeeNKhTUkbWBrwhnv28DCxTCz9dKhkyCsQ…

selectors probed

Certificate (current)

E8

from 2026-05-04 to 2026-08-02

Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.healthnet.com/content/healthnet/en_us.html

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: img-src * data:; default-src * data: 'unsafe-eval' 'unsafe-inline' blob:; object-src 'none';
strict-transport-security: max-age=31536000; includeSubDomains