indexo.dev

hrbs.co.uk

.uk crawl

First seen 2026-04-22 · Last seen 2026-05-18 · ok HTTP/1.1 200 2249 ms crawled 2026-05-15

US · 141.193.213.10 · AS209242 Cloudflare London, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Hinckley & Rugby Building Society - Home
Description
Empowering our members for over 150 years with savings and mortgages. We're passionate about supporting our members through financial milestones in their life.
Language
en-GB
Generator
Site Kit by Google 1.178.0
Canonical
https://www.hrbs.co.uk/
Feeds

Open Graph

url
https://www.hrbs.co.uk/
title
Hinckley & Rugby Building Society - Home
locale
en_GB
site name
HRBS - Public
description
Empowering our members for over 150 years with savings and mortgages. We're passionate about supporting our members through financial milestones in their life.

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • www.googletagmanager.com×4
  • cdn-cookieyes.com×1
  • gmpg.org×1

Social

Contact

Phone

Registration

Registrar
Fasthosts Internet Ltd
Created
1997-04-13
Expires
2031-04-13 1788 days left
Updated
2026-03-09
Name servers
  • ns1.livedns.co.uk.
  • ns2.livedns.co.uk.
  • ns3.livedns.co.uk.

DNS records live

NS
  • ns1.livedns.co.uk
  • ns2.livedns.co.uk
  • ns3.livedns.co.uk
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 10 eu-smtp-inbound-2.mimecast.com
TXT
  • _ph90yh6wmvoygq71oyzwnezts9hx56h
Verified for
  • 1Password
  • Google
  • Microsoft 365
  • Slack

Email authentication strong

SPF
v=spf1 redirect=_s51rewzk4.sdmarc.net
no all qualifier
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:a.51rewzk4@sdmarc.net
policy: reject (enforced)
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6hAibWp09KORjsDWEWm9AkpltF7C1LOJ/E9uxwcaKQiOH2JkisNfLTzLaN7c2vooraqvz0PGvEWWBjr46M…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyn07tEeg9uJRHQVGl/al6gBj8OBqV6itn2nPqDa49B4H2d5JboMgoltB29cdtodOsjBE40KyNCNJE7B8s4…
selectors probed

Certificate (current)

E8
from 2026-05-01 to 2026-07-30
Expires in 70 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.hrbs.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
accelerometer=(self)
x-content-type-options
nosniff
content-security-policy
connect-src 'self' 'unsafe-inline' https://*.analytics.google.com https://*.clarity.ms https://*.cookieyes.com https://*.google-analytics.com https://*.googletagmanager.com https://*.retrogreen.co.uk https://*.whoson.com https://cdn-cookieyes.com https://px.ads.linkedin.com https://retrogreen-20091303433.catalystserverless.eu https://www.mortgageadvicebureau.com; default-src 'self'; font-src data: 'self' https://fonts.gstatic.com https://hrbspublic.eddev.co; frame-ancestors 'self' *.hrbs.co.uk *.hrbs.sopra.aws *.newbury.co.uk *.newbury.sopra.aws capacitor://localhost http://localhost https://lifhrbs.criteriahub.io https://smartmoneypeople.com https://www.google.com; frame-src 'self' https://*.whoson.com/ https://*.youtube.com https://lifhrbs.criteriahub.io https://smartmoneypeople.com https://www.google.com; img-src data: 'self' https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com https://*.linkedin.com https://*.whoson.com https://cdn-cookieyes.
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
unsafe-none
cross-origin-embedder-policy
unsafe-none

Links to (5)

Linked from (4)