indexo.dev

heatons.net

.net crawl

First seen 2026-04-20 · Last seen 2026-05-10 · ok HTTP/1.1 200 582 ms crawled 2026-05-14

GB · 195.200.146.174 · AS8613 Wavenet Limited

Reputation 94/100 dmarc monitor-only

sector b2b services type homepage

HTML metadata

Title
Home
Description
With eight dedicated divisions and a passion for customer care, we provide a consolidated purchasing solution that saves our clients both time and money.

Technology

Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • cdn.jsdelivr.net×2
  • cdnjs.cloudflare.com×2
  • fonts.googleapis.com×1
  • res.cloudinary.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
IONOS SE
Created
1999-10-27
Expires
2034-10-27 3083 days left
Updated
2026-03-25
Name servers
  • ns1.livedns.co.uk
  • ns2.livedns.co.uk
  • ns3.livedns.co.uk

DNS records live

NS
  • ns1.livedns.co.uk
  • ns2.livedns.co.uk
  • ns3.livedns.co.uk
MX
  • 0 heatons-net.mail.protection.outlook.com
TXT
Show 12 TXT records
  • MS=ms35120532
  • s7o4dejbinotk5hj3c0dqodqf6
  • google-site-verification=Bu3XRZIUyYOrJyHNG_lKOM6pxLDKerCF92-_bpPy2NY
  • f99vpr2umi8lt4ig3vuq4be6d9
  • cvi36t2lbm0aifhbppdu2cr4a9
  • apple-domain-verification=ZS1x7YRGVMhusLMi
  • _i26vnl6k62dyzcr7oz32ncy8cswf3ct
  • _3n7aaks4zw01a3hgibalae6sqdeyu1d
  • nsht9ck2laj572je9nfaa39f8j
  • H0E3A93183
  • google-site-verification=69iP80LV89jiZlMwJd-X4K7Y0gMHwmA_IfcqaJnvQfM
  • google-site-verification=FaJrfdtFdKopWZq-7Y2qE2hy5zfkNC9fcZH1ZJGQV9s

Email authentication partial

SPF
v=spf1 ip4:195.200.146.128/25 include:spf.protection.outlook.com include:spf.uk.signature365.net include:spf.eu.signature365.net include:spf.messagelabs.com include:spf.smtp2go.com include:trustpilotservice.com include:mail.zendesk.com -all
strict (-all)
DMARC
v=DMARC1; p=none; pct=100
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQBGWESQwud9SjK7HlWE4H+7QciIulCfFR2K1W8SkGAfQ19hBED3xobDRcQzpsdlGKST5kYYOoR7KsCcgmC1…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2026-02-18 to 2027-03-22
Expires in 307 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://heatons.net/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
same-origin
permissions-policy
camera=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; font-src * data:; img-src * data:; connect-src *; frame-src *; base-uri 'self';
strict-transport-security
max-age=15768000

Links to (5)

Linked from (1)