maryarm.com

.com crawl

First seen 2026-04-17 · Last seen 2026-05-12 · ok HTTP/1.1 200 1625 ms crawled 2026-05-12

FR · 92.222.139.190 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Mary Arm • Fabricant français de cartouches de chasse et de sport depuis 1955
Description: Spécialiste français depuis 1955, Mary Arm fabrique des cartouches et munitions de chasse et de tir sportif. Un catalogue de plus de 100 références de qualité. Un réseau d'armuriers passionnés implantés partout en France.
Language: fr

Technology

Server: OVHcloud

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

OVH sas

Created

2005-11-21

Expires

2026-11-21 185 days left

Updated

2025-11-22

Name servers

dns100.ovh.net
ns100.ovh.net

DNS records live

NS

dns100.ovh.net
ns100.ovh.net

MX

5 maryarm-com.mail.protection.outlook.com

TXT

google-site-verification=SMIh1SaSM88Qoo0iF3jjKqrZMPhba2KWn0CfHYDlOnU
MS=ms84670525

Email authentication partial

SPF

v=spf1 a:mail.hgeurope.com ip4:91.183.152.128/29 ip4:90.85.207.81 include:spf.protection.outlook.com include:mx.ovh.com include:spfa.cpmails.com -all

strict (-all)

DMARC

v=DMARC1; p=none; adkim=s; aspf=s; rua=mailto:fnherstal2@eu.cp-dmarc.com; ruf=mailto:fnherstal2@eu.cp-dmarc.com

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumBzStcyCY6z0j4uGG72n3Y8G4pPB/th3LloCjiwbSg2NsdfG9Us6e2FFH/Eg4oIwVhdSPVWH3kHyv…

selectors probed

Certificate (current)

from 2026-04-14 to 2026-07-13

Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.maryarm.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: connect-src 'self' https://*.google-analytics.com https://maps.googleapis.com https://mapsresources-pa.googleapis.com/ https://www.google.com https://www.googletagmanager.com https://api.prestashop.com/ https://matomo.vox.fr https://cdn.segment.com https://api.segment.io; default-src 'self' https://stackpath.bootstrapcdn.com/ https://www.facebook.com https://fonts.googleapis.com https://maps.googleapis.com https://www.google.com https://fonts.gstatic.com https://maps.gstatic.com/ https://www.gstatic.com https://api.prestashop.com/; img-src 'self' data: https://www.facebook.com https://maps.googleapis.com https://mapsresources-pa.googleapis.com/ https://maps.gstatic.com/ https://www.gstatic.com https://api.prestashop.com/ https://profile.prestashop.com/ https://medias1.prestastore.com/ https://medias2.prestastore.com/ https://medias3.prestastore.com/; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdnjs.cloudflare.com/ https://connect.facebook.net https:
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (3)

Linked from (1)

vox.fr×2