kashimprints.com
HTML metadata
.png){kind=spacer}
Technology
- CDN
- Cloudflare
- Stack
- ASP.NET
Third-party hosts loaded (7)
- cdn.asicentral.com×19
- cdnjs.cloudflare.com×12
- commonmedia.asicentral.com×3
- ajax.googleapis.com×1
- maxcdn.bootstrapcdn.com×1
- translate.google.com×1
- www.facebook.com×1
Contact
- Phone
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2018-03-02
- Expires
- 2027-03-02 270 days left
- Updated
- 2026-03-02
- Name servers
-
- ns59.domaincontrol.com
- ns60.domaincontrol.com
DNS records live
- NS
-
- ns59.domaincontrol.com
- ns60.domaincontrol.com
- MX
-
- 0 kashimprints-com.mail.protection.outlook.com
- TXT
-
NETORGFT7636620.onmicrosoft.com
Email authentication partial
- SPF
-
v=spf1 include:secureserver.net -allstrict (-all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - k2:
Certificate (current)
E7
Expires in 34 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SameOrigin- permissions-policy
fullscreen=(),accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),screen-wake-lock=(),sync-xhr=(self),usb=(),web-share=(),xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' *.espwebsite.com; frame-src 'self' https: http: ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: http: ; style-src 'self' 'unsafe-inline' https: http: ; object-src 'self'; child-src 'self' https: http: ; font-src 'self' data: https: http: ; base-uri 'self' https: ; default-src 'self' https: http: ; form-action 'self' https: http: ; img-src 'self' data: https: http: ; connect-src 'self' https: wss: http: ; manifest-src 'self'; worker-src blob:- strict-transport-security
max-age=31536000; includeSubDomains- cross-origin-opener-policy
unsafe-none- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
same-site