hrratings.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-14 · ok HTTP/1.1 200 1063 ms crawled 2026-05-14

US · 34.120.183.89 · AS396982 Google LLC

Reputation 100/100

sector finance type homepage

HTML metadata

Title: HR Ratings | Leading global rating agency
Description: Leading credit risk agency in Mexico, USA and Latin America

Technology

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar

GoDaddy.com, LLC

Created

2007-04-13

Expires

2027-04-13 328 days left

Updated

2026-04-13

Name servers

ns-cloud-a1.googledomains.com
ns-cloud-a2.googledomains.com
ns-cloud-a3.googledomains.com
ns-cloud-a4.googledomains.com

DNS records live

NS

ns-cloud-a1.googledomains.com
ns-cloud-a2.googledomains.com
ns-cloud-a3.googledomains.com
ns-cloud-a4.googledomains.com

MX

0 hrratings-com.mail.protection.outlook.com

TXT

Show 7 TXT records

MS=ms18899171
apple-domain-verification=A73OgQVfsUowQn2w
google-site-verification=ovSLWkmNh3jjhAR9EnaiW5Rfy6IW2SGPpyIpaC_VlJM
20220614145101624wrbfmnuc5yicu740uh5ru36t302ch4364crroi0dopdgohd
2021032915280834qauob2e13wxn6pqvv0rbe4mzeye4frff132qgf86geyj9ijd
google-site-verification=Zy5-GHiUWD2K1XMHEBy07y8J18LxGy5Shp0IoYM4qjY
google-site-verification=Gl_cQJUvqeFJ-6GHBAouM9BrYKfrZRh7DQ2l9X7oPOU

Email authentication strong

SPF

v=spf1 include:emailsrvr.com include:spf.protection.outlook.com include:_spf.mailersend.net ip4:23.253.162.95 ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc@hrratings.com; ruf=mailto:dmarc@hrratings.com; fo=1

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6N2P01k8xGr3DNwTohqPdX6vf1ig0hKC+rTIwqQUzdjjM3g5DEiP94391CELOn5GiHGG1As/RP6rTUZehvR…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2026-01-06 to 2027-02-07

Expires in 263 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://hrratings.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
cross-origin-opener-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://maxcdn.bootstrapcdn.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com https://googleads.g.doubleclick.net https://www.youtube.com https://static.doubleclick.net; object-src 'self' https://googleads.g.doubleclick.net https://static.doubleclick.net; style-src 'self' 'unsafe-inline' 'unsafe-eval' https://maxcdn.bootstrapcdn.com https://use.fontawesome.com https://www.gstatic.com https://fonts.googleapis.com/; img-src 'self' https://www.google.com.mx https://www.google-analytics.com https://hrratings.com https://www.hrratings.com; form-action 'self'; media-src 'self'; font-src 'self' null https://maxcdn.bootstrapcdn.com https://use.fontawesome.com https://fonts.gstatic.com; connect-src 'self' https://www.google-analytics.com https://googleads.g.doubleclick.net https://www.googletagmanager.com https://analytics.google.com/g/ https://stats.g.doublecl
strict-transport-security: max-age=10886400 ; includeSubDomains
cross-origin-opener-policy: same-origin-allow-popups

Links to (3)

Linked from (2)

cumbreamexcap.com×2
mexicopeday.com×2