lesmills.com.co

HTML metadata

Title

Inicio

Language

en-US

Open Graph

url

https://www.lesmills.com.co/

title

Inicio

description

Entrena con nosotros Disfruta de las mejores clases grupales del mundo, donde y cuando quieras.

Technology

Server

ESF

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (5)

• lh3.googleusercontent.com×13
• fonts.googleapis.com×4
• www.gstatic.com×2
• apis.google.com×1
• www.googletagmanager.com×1

Social

• youtube

DNS records live

NS

• dns1.namecheaphosting.com
• dns2.namecheaphosting.com

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

Verified for

• Google

Email authentication weak

SPF

v=spf1 ip4:198.187.29.15 ip4:198.187.29.17 include:spf.web-hosting.com +a +mx +ip4:198.54.119.81 +ip4:198.54.121.136 +ip4:198.54.121.226 +ip4:198.54.120.245 ~all

softfail (~all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/2ZI6Ygs1dcUfMzAeoSdlYX39vQFR7DXtMnUIvToUpffscccROd26GHafzgP8H5LGqMhz+dQPOdiq…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.lesmills.com.co/

present

• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• cross-origin-opener-policy
• cross-origin-resource-policy

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• missing Permissions Policy

Links to (2)

• google.com×2
• youtube.com×2

Linked from (1)

• lesmills.com×2