heapsestrin.com
HTML metadata
Technology
- Server
- ESF
Third-party hosts loaded (2)
- www.google.com×2
- www.gstatic.com×2
Registration
- Registrar
- PDR Ltd. d/b/a PublicDomainRegistry.com
- Created
- 2009-06-15
- Expires
- 2026-06-15 26 days left
- Updated
- 2024-09-24
- Name servers
-
- ns1.rewhosting.com
- ns2.rewhosting.com
DNS records live
- NS
-
- ns1.rewhosting.com
- ns2.rewhosting.com
- ns3.rewhosting.com
- ns4.rewhosting.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
google-site-verification=o5OYFY3OcRhGR2OSAtp-RheG6QcWEvH3G5Ahw1cRc3g
Email authentication weak
- SPF
- not published
- DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
WR3
Expires in 64 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- permissions-policy
- cross-origin-opener-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
Header values
- x-frame-options
SAMEORIGIN- permissions-policy
ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*- x-content-type-options
nosniff- content-security-policy
require-trusted-types-for 'script';report-uri /recaptcha/challengepage/_/RecaptchaChallengePageUi/cspreport, script-src 'report-sample' 'nonce-PpQxTXVeA7pWJuH2_2_XxA' 'unsafe-inline';object-src 'none';base-uri www.google.com;report-uri /recaptcha/challengepage/_/RecaptchaChallengePageUi/cspreport;worker-src 'self'- strict-transport-security
max-age=31536000- cross-origin-opener-policy
same-origin- cross-origin-resource-policy
same-site