levenshall.co.uk

.uk crawl

First seen 2026-05-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 1145 ms crawled 2026-05-20

GB · 51.104.28.65 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Levens Hall :: Home
Canonical: //www.levenshall.co.uk/

Technology

Server: Microsoft-IIS
ASP.NET: 4.0.30319
jQuery: 1.9.1 known XSS (<3.5)

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Contact

Email

Phone

1539 560321

DNS records live

NS

a.ns14.net
b.ns14.net
c.ns14.net
d.ns14.net

MX

0 levenshall-co-uk.mail.protection.outlook.com

Verified for

Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHL+3OTlMF3gA0j/Dp4nA4muh+fDaxXoylORT8BpmGKXHXq4gdxIzAl4+eeie6RsSXTkRT3cD1YGmf+CGQrh…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9ZBEAJoFEkROclw0PXgF9EswDo2Mn7gtbbV1n6yaQf+HM8WMUrI+tHkon84F9W7JITnbfCHdGnH9gYlDA…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDe+Q3L7fAtTGxmSjb93wqogZMiyodSuiqjiDEmUnu0lumf6oDHNZ7tBMCmO2c82CmKCxrgSyrLaFktoiTfpBYWNL…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-02-19 to 2026-08-20

Expires in 91 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.levenshall.co.uk/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy

findings

short HSTS max-age
missing Content Security Policy
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=2592000
content-security-policy-report-only: default-src 'self' data:; connect-src 'self' *.google-analytics.com *.gstatic.com *.addthis.com; script-src 'self' *.google.com *.googleapis.com *.google-analytics.com *.gstatic.com *.googletagmanager.com *.twitter.com *.addthis.com *.twimg.com *.tygit.com *.facebook.net 'unsafe-inline' 'unsafe-eval' 'report-sample' data; style-src 'self' *.googleapis.com *.google.com *.twitter.com *.twimg.com *.myfonts.net 'unsafe-inline'; img-src 'self' *.google.com *.google-analytics.com *.gstatic.com *.googleapis.com *.googletagmanager.com *.twitter.com *.twimg.com *.ytimg.com *.facebook.com data:; font-src 'self' fonts.gstatic.com *.fontawesome.com *.typekit.net; frame-src 'self' *.google.com *.addthis.com *.twitter.com *.youtube.com *.tygit.com; form-action 'self'