indexo.dev

hiscox.co.uk

.uk crawl

First seen 2026-04-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 4686 ms crawled 2026-05-10

IE · 46.137.74.89 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Hiscox UK | Business Insurance, Home Insurance & more
Description
Award winning business insurance and home insurance from Hiscox. Get a tailored quote for professional indemnity, public liability, or home cover today.
Language
en
Canonical
https://www.hiscox.co.uk/
Translations
  • en ×2
  • de

Technology

CDN
Cloudflare
CMS
Drupal
Analytics
  • Cloudflare Insights
  • Google Analytics
  • Google Tag Manager
Ads
  • Google Ads
  • Google Ads (DoubleClick)
  • Meta Pixel
Fonts
  • Google Fonts
Third-party hosts loaded (23)
  • cdn.optimizely.com×2
  • www.googletagmanager.com×2
  • ajax.googleapis.com×1
  • api.feefo.com×1
  • connect.facebook.net×1
  • eu-central-1-decisionapi.lift.acquia.com×1
  • fonts.gstatic.com×1
  • googleads.g.doubleclick.net×1
  • hiscox.15gifts.com×1
  • i.ytimg.com×1
  • logx.optimizely.com×1
  • static.cloudflareinsights.com×1
  • static.doubleclick.net×1
  • stats.g.doubleclick.net×1
  • tags.tiqcdn.com×1
  • www.facebook.com×1
  • www.google-analytics.com×1
  • www.google.co.uk×1
  • www.google.com×1
  • www.googleadservices.com×1
  • www.hiscox.com×1
  • www.hiscox.de×1
  • yt3.ggpht.com×1

Social

Contact

Phone
Address
22 Bishopsgate, EC2N 4AJ, London, GB

Registration

Registrar
CSC Corporate Domains, Inc
Created
1994-12-23
Expires
2026-12-23 216 days left
Updated
2025-12-19
Name servers
  • ns1-04.azure-dns.com.
  • ns2-04.azure-dns.net.
  • ns3-04.azure-dns.org.
  • ns4-04.azure-dns.info.

DNS records live

NS
  • ns1-04.azure-dns.com
  • ns2-04.azure-dns.net
  • ns3-04.azure-dns.org
  • ns4-04.azure-dns.info
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 10 eu-smtp-inbound-2.mimecast.com
TXT
Show 5 TXT records
  • sfjs3c3sv84gg65g3ldq51jvgtlkvsbv
  • GeA08TIj5eUxzA0omr+FuXlO/qTvprXTcW+EwK+CG8M=
  • ycJlm+LjsKvl6rxVqDFdnpSnhtZbbWWhXg0Qswz2N85sHEPw6oQ5wMyfYEhsnkcOo2UU3fIFo6eDEZ8v3GRvFw==
  • EssJH/E6bmU9Am37g/gz+ZMJeTTSizJWXVYqhZFG5Hs=
  • PaAmIVskoL0M773SgcuRUjz4eiypfVoqhQc5yopz+6M=
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:eu._netblocks.mimecast.com include:sendgrid.net include:spf.acturis.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:0782b17d5857572@rep.dmarcanalyzer.com; ruf=mailto:0782b17d5857572@for.dmarcanalyzer.com;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-09-16 to 2026-10-15
Expires in 147 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.hiscox.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *; object-src 'none'; style-src * 'unsafe-inline'; img-src * 'self' data: https; media-src *; frame-src *; frame-ancestors 'self' *.hiscox.co.uk; child-src *; font-src * data:; connect-src *; report-uri /report-csp-violation
strict-transport-security
max-age=31536000; includeSubDomains

Links to (11)

Linked from (5)