indexo.dev

latacora.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-15 · ok HTTP/1.1 200 858 ms crawled 2026-05-07

US · 198.185.159.145 · AS53831 Squarespace, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Latacora | Latacora
Description
Retained security teams for startups.
Language
en-us
Generator
Hugo 0.160.1
Feeds

Open Graph

url
https://www.latacora.com/
title
Latacora
locale
en_us
site name
Latacora
description
Latacora develops, grows, and maintains information security practices for tech-forward businesses. We join your team to build (or re-build) and scale your practice to your needs. Once it makes sense to do so, we help you bring those capabilities in-house. We’ve been in business for nearly a decade and have built the security function for some of the most high-performing organizations around, for everything from platforms, to authentication providers, to medical devices and healthcare, to financial services integrating with banks, and even the actual banks.

Technology

CDN
Amazon CloudFront
Server
GitHub.com
CMS
Hugo
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×1

Social

Registration

Registrar
Squarespace Domains II LLC
Created
2016-08-15
Expires
2026-08-15 87 days left
Updated
2025-07-31
Name servers
  • ns-cloud-a1.googledomains.com
  • ns-cloud-a2.googledomains.com
  • ns-cloud-a3.googledomains.com
  • ns-cloud-a4.googledomains.com

DNS records live

NS
  • ns-cloud-a1.googledomains.com
  • ns-cloud-a2.googledomains.com
  • ns-cloud-a3.googledomains.com
  • ns-cloud-a4.googledomains.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • apple-domain-verification=YMz7KnNemLUcBzAu
  • _d1471ugvyq8wh6lobvcqqxul5puecrh

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:_spf.salesforce.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:re+tnoz5eptp5x@dmarc.postmarkapp.com; aspf=r;
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr18+I+InXmJl7wkvkfKB2H0N/SbyCMVXjrbPQXm1U2Pv7k5aaxeqWv/advJHt4X2t3LwJngr/knOHc…
selectors probed

Certificate (current)

R12
from 2026-04-08 to 2026-07-07
Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.latacora.com

findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy

Links to (4)

Linked from (2)