heliguy.com

HTML metadata

Title

heliguy™ – Drone Shop, CAA Training, UK Repair Centre

Description

heliguy™ is the UK's leading DJI drone supplier, offering UAVs, accessories, expert advice, support, & accredited training. Elevate your operations today.

Language

en

Generator

Gatsby 5.13.7

Canonical

https://www.heliguy.com/

Translations

en

Technology

CDN: Netlify
CMS: Shopify

Analytics

Google Tag Manager

Third-party hosts loaded (8)

images.ctfassets.net×12
www.googletagmanager.com×4
apis.google.com×1
static.claydar.com×1
static.klaviyo.com×1
videos.ctfassets.net×1
www.facebook.com×1
www.gstatic.com×1

Social

Contact

Email

Phone

01912961024

Registration

Registrar

GoDaddy.com, LLC

Created

2000-04-13

Expires

2034-04-13 2886 days left

Updated

2025-04-14

Name servers

kim.ns.cloudflare.com
seth.ns.cloudflare.com

DNS records live

NS

kim.ns.cloudflare.com
seth.ns.cloudflare.com

MX

100 aspmx.l.google.com
105 alt1.aspmx.l.google.com
105 alt2.aspmx.l.google.com
110 alt3.aspmx.l.google.com
110 alt4.aspmx.l.google.com

TXT

Show 8 TXT records

linkedin-site-verification=d4a795f2-bb04-43ee-9563-c6346fac96d2
ahrefs-site-verification_4f0d065515c526eda2f3196a88f35793ba74cda76765f4303595105e926b3efc
facebook-domain-verification=r3z7v9vrqa6rcjxoat4yvc7amv0nwb
google-site-verification=MNIFHaJCps_gt0FAjnPNf9ntIkQPxvhgDppg0f0KAzk
google-site-verification=kZPtt9oQ-1t0of2koTkaumPiPQvbu0VPneZDbZXuvqM
google-site-verification=uEW5rtXJBFX-42EMdqRWVWj85xzXkRnXUY1ht_3bDz8
google-site-verification=xvIbCW13s0OJ6DK8qATDv0R8C-b7maNJ25nPXF2AB04
klaviyo-site-verification=U7wVZm

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:shops.shopify.com include:amazonses.com include:emailsrvr.com a mx -all

strict (-all)

DMARC

v=DMARC1; p=reject;

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMLvYjMN3cNMzqttHC/U//+gczjxoGEh/JUIGTuGi8AhCNH0ul9fpIpo6CY+C/jsepqnkDSlPyMHbz…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Z8jo3E1RGxrc5BnTmm0S+tzLMM7BSXeJerx5JlIWf7thvIXMbDoTUnR/35lP0JWfrHs96Ns9+AKS9OAXl…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxo8elVJKI2H5MCvuor7Z9VvZ3oXY+Hxwt0xce6IHzscbxB0LurvlhrN6rRVME0x2NPGm0pH6jGqORc5CF…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

E7

from 2026-04-14 to 2026-07-13

Expires in 56 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.heliguy.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https: https://static.claydar.com; connect-src 'self' https: wss: https://api.claydar.com; frame-src 'self' https://www.youtube.com https://www.google.com https://recaptcha.google.com https://www.recaptcha.net https://maps.google.com https://www.gstatic.com https://www.arcgis.com; frame-ancestors 'self' https://app.contentful.com/;
strict-transport-security: max-age=31536000

Links to (4)

Linked from (2)

arpas.uk×2
dronecontrol.co×1