heapy.com

.com crawl

First seen 2026-04-28 · Last seen 2026-04-28 · ok HTTP/1.1 200 3394 ms crawled 2026-05-05

US · 67.227.193.163 · AS32244 Liquid Web, L.L.C

Reputation 100/100

Classifying

HTML metadata

Title: Engineering Sustainability Commissioning - HEAPY
Description: HEAPY a leader in engineering, sustainability and commissioning for Healthcare, Education, Government, Cultural and Life Sciences.
Language: en-US
Canonical: https://heapy.com/

Open Graph

url: https://heapy.com/
title: Engineering Sustainability Commissioning - HEAPY
locale: en_US
site name: HEAPY
description: HEAPY a leader in engineering, sustainability and commissioning for Healthcare, Education, Government, Cultural and Life Sciences.

Technology

Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (4)

www.google.com×2
gmpg.org×1
use.typekit.net×1
www.googletagmanager.com×1

Social

Registration

Registrar

Network Solutions, LLC

Created

1996-08-07

Expires

2028-08-06 809 days left

Updated

2025-07-07

Name servers

ns41.worldnic.com
ns42.worldnic.com

DNS records live

NS

ns41.worldnic.com
ns42.worldnic.com

MX

10 mx3.propoint.net
10 mx4.propoint.net

TXT

Show 8 TXT records

_v7b4k3iemjxn7elxvluxf3f4u253ldb
c502959872ba46faac83023efae7e638
9BApeD52ENJZGTqH5cGFD3pVLcSYy3ShALePWQ7RQWUBn53dzcnjyl3nd9+oYlwM4XcPxIQqSFKYZcIAZqlxQQ==
853h81jnlqbqhdmy2zy41v60kx2jqk1l
amazonses:pyMm0GT/LAJq+RFkYHVVhnSajjzJcNpjPNOB7+AKrCc=
duo_sso_verification=SwJsByPMZncDnEQwoVnFhAtH76yNoobXPtSTEOcL7MAMeKcz3BY3i6NLAhxzUPCi
clp9gjn9z8gx0ld7jcdkxcjqwjw0mr91
v=spf1 mx include:_netblocks.heapy.com include:spf.protection.outlook.com include:clientfeedbacktool.com include:spf-us.emailsignatures365.com ~all

Certificate (current)

RapidSSL TLS RSA CA G1

from 2025-05-23 to 2026-05-23

Expires in 3 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://heapy.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; font-src 'self' data:; style-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src 'self' https://www.google.com https://www.gstatic.com; img-src 'self' data:; frame-src 'self' https://*.issuu.com www.google.com;'
strict-transport-security: max-age=31536000; includeSubDomains; preload, max-age=63072000; includeSubDomains

Links to (5)

Linked from (1)

amfp.org×1