indexo.dev

kellaway.co.uk

.uk crawl

First seen 2026-04-20 · Last seen 2026-05-16 · ok HTTP/1.1 200 1643 ms crawled 2026-05-13

GB · 213.129.71.30 · AS24958 Cyberfort Limited

Reputation 100/100

Classifying

HTML metadata

Title
Kellaway Building Supplies
Language
en
Generator
nopCommerce

Technology

Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×1
  • unpkg.com×1
  • widget.trustpilot.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
Tucows Inc t/a Tucows
Created
1999-03-31
Expires
2027-03-31 315 days left
Updated
2026-03-02
Name servers
  • ns20.digicertdns.com.
  • ns21.digicertdns.com.
  • ns22.digicertdns.com.
  • ns23.digicertdns.net.
  • ns24.digicertdns.net.
  • ns25.digicertdns.net.

DNS records live

NS
  • ns20.digicertdns.com
  • ns21.digicertdns.com
  • ns22.digicertdns.com
  • ns23.digicertdns.net
  • ns24.digicertdns.net
  • ns25.digicertdns.net
MX
  • 0 kellaway-co-uk.mail.protection.outlook.com
TXT
  • brevo-code:4ae14cc0128a5b5de6eccadfcf9b4b6b

Email authentication strong

SPF
v=spf1 ip4:212.222.83.161 include:spf.uk-1.a.mimecastprotect.com include:eu._netblocks.mimecast.com include:spf.uk.exclaimer.net include:spf.protection.outlook.com include:em6487.kellaway.co.uk include:spf.hornetsecurity.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:administrator@kellaway.co.uk; ruf=mailto:administrator@kellaway.co.uk; pct=100
policy: quarantine
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7ztvfahOF+DrtYyU0t0GMkvzJ8xGdJBiUwhVW4kGpanzgD7WKTWSD+i7aTEK7d3Cdnii6TIDNRdgW…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPUnmg2tkmPQanyqdqnUeWHVpcy9MmfYr034RWllolwPy6Oj0i0s4Ul5H6tk5BIpx+VC8Nh3EnghDYttRSq8…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/KBx8HCqwVtydEnxqTk51pngGpmwrEok+oNrX+vStcr+pW+R7ldeleIuocnWSmP8eMaE6o9kUcSpZoBLY…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDze+fpQ77l0qlT3bswEYSDlGzIf+iG5Ok3dgaAVi6QLJ3b24RFF/Vmk2u6/MkXeXqbUPaPtLc86g6Z9AccugUyi…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-10-14 to 2026-11-15
Expires in 179 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.kellaway.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src *; font-src *; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
strict-transport-security
max-age=31536000; includeSubDomains

Links to (8)

Linked from (3)