hillandsmithvrs.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-10 · ok HTTP/1.1 200 5044 ms crawled 2026-05-13

GB · 51.24.0.28 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

Hill & Smith VRS

Description

Welcome to the Hill & Smith VRS website, dedicated to vehicle restraint systems

Language

en-US

Canonical

https://hillandsmithvrs.com/

Feeds

Open Graph

url: https://hillandsmithvrs.com/
title: Hill & Smith VRS - Home
locale: en_US
site name: Hill & Smith VRS |
description: Welcome to the Hill & Smith VRS website, dedicated to vehicle restraint systems

Technology

Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (4)

cc.cdn.civiccomputing.com×2
kit.fontawesome.com×2
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Email

info@hill-smith.co.uk

Phone

01902499400

Registration

Registrar

Amazon Registrar, Inc.

Created

2025-05-20

Expires

2035-05-20 3286 days left

Updated

2025-05-20

Name servers

ns-1416.awsdns-49.org
ns-1760.awsdns-28.co.uk
ns-361.awsdns-45.com
ns-538.awsdns-03.net

DNS records live

NS

ns-1416.awsdns-49.org
ns-1760.awsdns-28.co.uk
ns-361.awsdns-45.com
ns-538.awsdns-03.net

MX

Verified for

Atlassian
Google

Email authentication strong

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com; rf=afrf; pct=100; ri=86400

policy: reject (enforced) · sp=reject

DKIM

Show 12 DKIM selectors

default: v=DKIM1; p=
google: v=DKIM1; p=
selector1: v=DKIM1; p=
selector2: v=DKIM1; p=
k1: v=DKIM1; p=
k2: v=DKIM1; p=
mail: v=DKIM1; p=
dkim: v=DKIM1; p=
s1: v=DKIM1; p=
s2: v=DKIM1; p=
mxvault: v=DKIM1; p=
smtpapi: v=DKIM1; p=

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2026-01-29 to 2027-02-28

Expires in 283 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://hillandsmithvrs.com/

present

content-security-policy
referrer-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
content-security-policy: base-uri 'self';object-src 'self';default-src 'self';manifest-src 'self';style-src 'self' 'unsafe-inline' *.hillandsmithvrs.com fonts.googleapis.com google.com cdn.jsdelivr.net use.fontawesome.com cdnjs.cloudflare.com use.typekit.net p.typekit.net hillandsmithvrs.com;script-src 'unsafe-inline' blob: googlesyndication.com *.googlesyndication.com *.hillandsmithvrs.com www.googletagmanager.com widget.bugyard.io consentcdn.cookiebot.com platform.twitter.com beacon-v2.helpscout.net ajax.googleapis.com use.fontawesome.com www.facebook.com connect.facebook.net www.google-analytics.com stats.g.doubleclick.net z.moatads.com cookiebot.com kit.fontawesome.com player.vimeo.com cc.cdn.civiccomputing.com www.google.com www.gstatic.com hillandsmithvrs.com *.clarity.ms;frame-src 'self' www.googletagmanager.com youtube.com www.youtube.com player.vimeo.com www.google.com;img-src 'self' data: googlesyndication.com *.googlesyndication.com hillandsmithinfrastructure.com *.hillandsmithinfrastructure.com *.h

Links to (3)

Linked from (1)

hill-smith.co.uk×1