kiwicollection.com
kiwicollection.com
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Analytics
- Google Tag Manager
- Fonts
-
- Adobe Fonts
- Google Fonts
Third-party hosts loaded (9)
- www.google.com×3
- cloud.typography.com×2
- fonts.googleapis.com×2
- www.google-analytics.com×2
- www.googletagmanager.com×2
- www.gstatic.com×2
- script.gethovr.com×1
- use.typekit.net×1
- www.facebook.com×1
Social
Contact
- Phone
- Address
- st at1 877 999 0680
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2003-03-05
- Expires
- 2029-03-05 1019 days left
- Updated
- 2026-03-05
- Name servers
-
- ns-1022.awsdns-63.net
- ns-1327.awsdns-37.org
- ns-1571.awsdns-04.co.uk
- ns-233.awsdns-29.com
DNS records live
- NS
-
- ns-1022.awsdns-63.net
- ns-1327.awsdns-37.org
- ns-1571.awsdns-04.co.uk
- ns-233.awsdns-29.com
- MX
-
- 10 kiwicollection-com.mail.protection.outlook.com
- TXT
-
00DU0000000MDCe=1TBOO00000001NVgoogle-site-verification:0h5TljmuGp1faWY7dVyoYDFlUUASvYob8roitsIEwxUgoogle-site-verification:Qpj5WjVWG2PqdLu-fiasf32v6_kv6IN1J-xKpulu0ZU
- Verified for
-
- Atlassian
- Meta
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:amazonses.com include:servers.mcsv.net include:_spf.salesforce.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:6095a54db8c94@ag.dmarcly.com; ruf=mailto:6095a54db8c94@fo.dmarcly.com; sp=reject; fo=1;policy: reject (enforced) · sp=reject - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoruNZ57y5W3yNtGx35rMAyMQiPfy2SWKtw4/rRyFael2iB1DMn03anNpMelU+tYZWsPYf3sfVM+y1d… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Tjj3jDS+zNmyjgON9C2tt9E2l2acULU6E4Mh8alOpzm6JofuzJfoEjPkK2LrZxCey4T2uzNkI3NFa… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
selectors probed - selector1:
Certificate (current)
Amazon RSA 2048 M04
Expires in 180 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- cross-origin-opener-policy
- findings
-
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer, strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://*.hovrapi.com https://us-central1-hovr-production.cloudfunctions.net https://*.googleapis.com; base-uri 'self'; connect-src 'self' https://cdn.kiwicollection.com https://hovrapi.com https://*.mux.com https://*.googleapis.com https://www.google-analytics.com https://*.google.com https://*.google.ca https://www.googletagmanager.com https://www.gstatic.com https://*.googlesyndication.com https://*.clarity.ms https://*.facebook.net https://*.facebook.com https://*.cookiefirst.com https://*.hcaptcha.com https://*.snapengage.com https://*.mailchimp.com https://9kvu81ddh3.execute-api.us-east-2.amazonaws.com https://*.intuit.com https://*.typekit.net https://*.cookiereports.com https://stats.g.doubleclick.net/ https://*.rollbar.com https://*.pinterest.com https://*.pinimg.com https://*.ubembed.com https://*.bing.com; font-src 'self' data: https:; frame-ancestors 'self'; frame-src 'self' https://www.googletagmanager.com https://www.google.com https://www.gstatic.com h- strict-transport-security
max-age=31536000; includeSubdomains;- cross-origin-opener-policy
same-origin