indexo.dev

latitudesubro.com

.com crawl

First seen 2026-05-04 · Last seen 2026-05-17 · ok HTTP/1.1 200 7092 ms crawled 2026-05-11

US · 52.149.228.11 · AS8075 Microsoft Corporation

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Latitude Subrogation Services | Subrogation & Salvage Specialists
Description
We provide Subrogation Recovery & Salvage management services in Michigan and also offer handy assistance for Subrogation Claims & Salvage Administration

Technology

Server
Microsoft-IIS
Analytics
  • Google Tag Manager
Ads
  • Google Ads
  • Google Ads (DoubleClick)

Third-party hosts loaded (3)

  • www.googletagmanager.com×2
  • googleads.g.doubleclick.net×1
  • www.googleadservices.com×1

Social

Contact

Phone

Registration

Registrar
Network Solutions, LLC
Created
2003-02-11
Expires
2033-02-11 2459 days left
Updated
2023-11-17
Name servers
  • ns1.bdm.microsoftonline.com
  • ns2.bdm.microsoftonline.com
  • ns3.bdm.microsoftonline.com
  • ns4.bdm.microsoftonline.com

DNS records live

NS
  • ns1.bdm.microsoftonline.com
  • ns2.bdm.microsoftonline.com
  • ns3.bdm.microsoftonline.com
  • ns4.bdm.microsoftonline.com
MX
  • 0 latitudesubro-com.mail.protection.outlook.com
TXT
  • cc9736v39jl1h53ah85bojoqoe
  • mscid=AeVd/r2vF40sH5ET0aeBjvYrWm4tim1QxLfJrvC1c+YGEwyU5RFaP3K1TLo8/Hl+JEL8+BcFTyfsdL73MySWQg==
  • 42lahts5urs2js2hoe5mfa7t5l

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:postmaster@latitudesubro.com
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDM1sNwrEltmlXq5KLMaID/ssb41jv5RzJ6YhUJT9wmFgxOOqeeFjVMFVWA+R1MjHit8f1nLZYqcqcZSGMAZU…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-09-07 to 2026-10-09
Expires in 143 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.latitudesubro.com/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; style-src 'unsafe-inline' 'self' https://fonts.googleapis.com; font-src https://fonts.gstatic.com 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://googleads.g.doubleclick.net https://cpsc.gov/ https://seal.websecurity.norton.com https://ssl.google-analytics.com https://www.googleadservices.com/ *.rapidscansecure.com/; img-src 'self' https://www.google.com https://cpsc.gov https://seal.websecurity.norton.com https://ssl.google-analytics.com *.rapidscansecure.com/; frame-src https://cpsc.gov/ https://www.youtube.com/ https://maps.google.com/ https://*.google.com/ https://appone.com/ https://www2.appone.com/ https://recruiting.myapps.paychex.com/ *.appone.com/;

Links to (7)

Linked from (2)