indexo.dev

hinda.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-08 · ok HTTP/1.1 200 1980 ms crawled 2026-05-08

US · 141.193.213.10 · AS209242 Cloudflare London, LLC

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Hinda Incentives
Description
We help clients engage, inspire, and reward the people most important to their business with sales incentive, employee recognition, and consumer loyalty programs.
Language
en-US
Generator
Site Kit by Google 1.178.0
Canonical
https://www.hinda.com/
Feeds

Open Graph

url
https://www.hinda.com/
title
Hinda Incentives
locale
en_US
site name
Hinda Incentives
description
We help clients engage, inspire, and reward the people most important to their business with sales incentive, employee recognition, and consumer loyalty programs.

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (3)

  • www.googletagmanager.com×2
  • cdn.cookielaw.org×1
  • gmpg.org×1

Social

Registration

Registrar
Network Solutions, LLC
Created
1995-04-29
Expires
2028-04-30 712 days left
Updated
2026-03-01
Name servers
  • ns10.dnsmadeeasy.com
  • ns11.dnsmadeeasy.com
  • ns12.dnsmadeeasy.com
  • ns13.dnsmadeeasy.com
  • ns14.dnsmadeeasy.com
  • ns15.dnsmadeeasy.com

DNS records live

NS
  • ns10.dnsmadeeasy.com
  • ns11.dnsmadeeasy.com
  • ns12.dnsmadeeasy.com
  • ns13.dnsmadeeasy.com
  • ns14.dnsmadeeasy.com
  • ns15.dnsmadeeasy.com
MX
  • 10 msg1.e2egroup.com
  • 20 msg2.e2egroup.com
TXT
Show 8 TXT records
  • 0ed1fe018a9da7587d0e4e48bfa59a5614fd1f3387
  • _5lq7k0xu2o04qpjtfgc16ekylw9m3un
  • google-site-verification=Y3jVHdYWgMPZqayyj6rLet6O4hIVtl5CrCVegEk40o4
  • 0ed1fe018a24680e5af5a0432291b8a8eaf171510c
  • 00D60000000J0ZS=1TBUP00000000xh
  • OBcr1/h2Guk7uXBlviIiEy2cKIgMwjX0nvS1sD0UmRRb2jRk05r4WiN7X5+PpsZqvFWu0UE8PYMKUcyl3JxfJw==
  • knowbe4-site-verification=09d27661a7ff0f74e929f536d0e04283
  • yahoo-verification-key=l5MfuazYsBvBe6TMKHEpdeqlOWnn1gIhVHRxuUrbWtE=

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:_spf.salesforce.com include:servers.mcsv.net include:spf.mtasv.net include:icpbounce.com ip4:104.207.198.109/32 ip4:38.143.63.65/32 ip4:38.143.12.65/32 ip4:38.147.12.66/32 ip4:38.143.63.71/32 ip4:169.130.15.15/32 ip4:71.7.190.59 ip4:139.60.118.55/32 ip4:71.7.190.54/32 ip4:129.33.240.194/32 ip4:156.55.203.219/32 ip4:104.207.198.105 ip4:40.143.6.122/32 ip4:50.21.166.19 -all
strict (-all)
DMARC
v=DMARC1;p=reject;fo=1;rua=mailto:3d90e656@mxtoolbox.dmarc-report.com;ruf=mailto:3d90e656@forensics.dmarc-report.com;pct=10
policy: reject (enforced) · pct=10
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw96Ypho+xM/FiPA+ua2HEjuQAPSrrwAlHglX/r8U9ElWtfN7pn1gYBW3rDTUzIHWO/168VRou9xukf…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xG+qHmYk4BHcMlRLGbhTbYr3ccnIbjtxs2IyPZgFYDOhTuY6SsVL+ShkQ7irt8HJ8IuIMy1z6mZ1n…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • mail: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCpuDFs+laI+uqPEV3N5EsNJTPftx2I+BIafi65PgzZuVfmgmDM7bHoFPUXz5/BThZNzprxUWOkmJnYf33jnxb1I+hu/+5…
selectors probed

Certificate (current)

E7
from 2026-03-20 to 2026-06-19
Expires in 31 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.hinda.com/

present
  • content-security-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
content-security-policy
default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval' 'unsafe-dynamic'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: 'unsafe-inline';

Links to (4)

Linked from (1)