iguanas.co.uk

HTML metadata

Technology

CDN

Cloudflare

CMS

Nuxt

jQuery

3.6.0

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• images.ctfassets.net×54
• cdnjs.cloudflare.com×1
• www.googletagmanager.com×1

Social

• instagram
• facebook
• tiktok

DNS records live

NS

• nadia.ns.cloudflare.com
• sam.ns.cloudflare.com

MX

• 10 iguanas-co-uk.mail.protection.outlook.com

TXT

Show 7 TXT records

• iguanaspeople.co.uk
• savo77caam8kpmq6doqtbvoid1
• 0ed1fe018aaebfa2229bf849a1affe73
• 5ci444sb2ukrtuu38t4aqnmjqi
• 5k31ok93spa4gv466u3ic7tl8v
• SmUQV6BkHmsaKwFW0/GVTxiVb/mRHZIy7nFEcZnJQqI/hRIt/dUANwiib7h7khGEysSmIqGtVWQczKAlmwHhjQ==
• ckrnjdmkqlp7bt9k9h8qf54p3e

Verified for

• Google

Email authentication strong

SPF

v=spf1 include:spf.mailjet.com include:spf.protection.outlook.com include:shops.shopify.com include:mailer.shopifyemail.com include:txdltd.co.uk -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email;

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6gbzRQzGYK0XEuxBhhAngtKjW6rdjg5eO6ffc/oUlscfSidTQhW/UJ+6cR2DAqVbao/GeSt5NLhOho…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.iguanas.co.uk/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (4)

• tiktok.com×1
• instagram.com×1
• facebook.com×1
• ctfassets.net×1

Linked from (1)

• farmsnotfactories.org×1