idhea.net

.net crawl

First seen 2026-04-17 · Last seen 2026-05-08 · ok HTTP/1.1 200 4875 ms crawled 2026-05-12

US · 13.89.172.22 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Powering tomorrow’s innovations with AI-ready data
Description: An ocular data-as-a-service platform, purpose-built to accelerate AI research and digital health innovation
Language: en

Open Graph

url: https://idhea.net/en
title: Powering tomorrow’s innovations with AI-ready data
description: An ocular data-as-a-service platform, purpose-built to accelerate AI research and digital health innovation

Technology

Analytics

Google Tag Manager

Third-party hosts loaded (2)

idheaportalprod.blob.core.windows.net×12
www.googletagmanager.com×2

Registration

Registrar

GoDaddy.com, LLC

Created

2023-10-31

Expires

2026-10-31 164 days left

Updated

2025-04-29

Name servers

ns55.domaincontrol.com
ns56.domaincontrol.com

DNS records live

NS

ns55.domaincontrol.com
ns56.domaincontrol.com

MX

0 mxa-0023b201.gslb.pphosted.com
0 mxb-0023b201.gslb.pphosted.com

TXT

google-site-verification=6C-74ptl_fRK8XCZZxI2DMaztc-HXk9-dxiVNypv9ww
MS=ms96131023

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-01-30 to 2026-07-31

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://idhea.net/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self';script-src 'self' 'nonce-f19efb080e1cc431212dee700c0e17824f38556ff41acb5244230e03c8ced3f1' 'strict-dynamic' https://www.googletagmanager.com https://www.google-analytics.com;style-src 'self' 'nonce-f19efb080e1cc431212dee700c0e17824f38556ff41acb5244230e03c8ced3f1';style-src-attr 'unsafe-inline';img-src 'self' data: https://idheaportalprod.blob.core.windows.net https://www.googletagmanager.com www.googletagmanager.com;connect-src 'self' https://api.idhea.net https://centralus-2.in.applicationinsights.azure.com/ https://api.ipify.org https://idheaportalprod.blob.core.windows.net https://www.googletagmanager.com https://www.google-analytics.com https://analytics.google.com https://js.monitor.azure.com https://googletagmanager.com https://tagmanager.google.com https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://www.googleadservices.com https://www.google.com https://www.googletagmanager.com https://pagead2.googlesyndication
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin

Links to (1)

topconhealthcare.com×2

Linked from (1)

topconhealthcare.com×2