idx.inc
idx.inc
HTML metadata
Technology
- CDN
- Cloudflare
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (14)
- www.idx.inc×86
- assets.investisdigital.com×6
- cdn.jsdelivr.net×5
- cdnjs.cloudflare.com×3
- fonts.googleapis.com×2
- unpkg.com×2
- www.googletagmanager.com×2
- cdn-4.convertexperiments.com×1
- irs.tools.investis.com×1
- js.hs-scripts.com×1
- js.hsforms.net×1
- otp.tools.investis.com×1
- viz.tools.investis.com×1
- www.youtube.com×1
Social
Registration
- Registrar
- Namecheap
- Created
- 2023-09-28
- Expires
- 2026-09-28 130 days left
- Updated
- 2025-10-01
- Name servers
-
- ns-1740.awsdns-25.co.uk
- ns-1159.awsdns-16.org
- ns-477.awsdns-59.com
- ns-659.awsdns-18.net
DNS records live
- NS
-
- ns-1159.awsdns-16.org
- ns-1740.awsdns-25.co.uk
- ns-477.awsdns-59.com
- ns-659.awsdns-18.net
- MX
-
- 10 eu-smtp-inbound-1.mimecast.com
- 10 eu-smtp-inbound-2.mimecast.com
- TXT
-
Show 5 TXT records
pexip-ms-tenant-domain-verification=3558ca87-354c-4953-9954-108e6de43755pexip-portal-domain-verification=3558ca87-354c-4953-9954-108e6de43755status-page-domain-verification=bp2fldrkntmttq1xspt772v1fmpyw9ldxry4338155gg0ed1fe018af448b345ea9049fcad0f48148229cfee
- Verified for
-
- Apple
- Atlassian
- GlobalSign
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:_netblocks.mimecast.com include:sendgrid.net include:stspg-customer.com ip4:52.5.109.25 ip4:52.7.211.205 include:2462642.spf04.hubspotemail.net include:beanstalkspf.smtp.com ip4:208.86.168.7 include:5196679.spf08.hubspotemail.net -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; sp=reject; pct=100; ri=86400; rua=mailto:dmarc.srg@idx.inc; ruf=mailto:dmarc.srg@idx.inc; fo=1;policy: reject (enforced) · sp=reject - DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5OGu0owKHUpLJY7r6vptWbkkmns3LLCa0489GL6TWfB9ZVsXvNcTmD5W4oWkST/j970E3LqnG4AUyO/gD…
selectors probed - s1:
Certificate (current)
GlobalSign RSA OV SSL CA 2018
Expires in 210 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(),ambient-light-sensor=(), battery=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), gyroscope=(), magnetometer=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), usb=(), web-share=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src *.myidx.cloud 'self' 'unsafe-inline' https://*.clarity.ms https://c.bing.com ajax.googleapis.com assets.investisdigital.com fonts.googleapis.com use.typekit.net google-analytics.com code.highcharts.com viz.tools.investis.com edge.api.brightcove.com *.brightcovecdn.com *.convertexperiments.com; script-src *.myidx.cloud 'self' 'unsafe-inline' 'unsafe-eval' js.hs-scripts.com cdnjs.cloudflare.com js.hs-banner.com js.hs-analytics.net js.hsadspixel.net js.hubspot.com https://*.clarity.ms https://scripts.clarity.ms/0.8.27/clarity.js https://www.clarity.ms/tag/svc9v0m76w widget.prod.equally.ai https://widget.prod.equally.ai/equally-widget.min.js *.hsforms.net unpkg.com *.zscaler.net *.zscalerone.net *.zscalertwo.net *.zscalerthree.net *.zscloud.net api.reciteme.com sc.lfeeder.com googleads.g.doubleclick.net www.googletagmanager.com *.posthog.com app.posthog.com snap.licdn.com connect.facebook.net ajax.googleapis.com www.youtube.com cdn.jsdelivr.net code.jquery.com otp.tools.investi- strict-transport-security
max-age=31536000; includeSubDomains; preload