mast-group.com

HTML metadata

Title: Mast Group Home Page
Description: Mast Group Ltd. is an independent world class manufacturer and supplier of diagnostic products for clinical, industrial and veterinary testing.
Language: en

Open Graph

url: https://www.mast-group.com/

Technology

Analytics

Google Tag Manager

Third-party hosts loaded (5)

code.jquery.com×2
cdnjs.cloudflare.com×1
js-eu1.hs-scripts.com×1
s7.addthis.com×1
www.googletagmanager.com×1

Registration

Registrar

IONOS SE

Created

2016-08-17

Expires

2026-08-17 89 days left

Updated

2025-08-18

Name servers

jerome.ns.cloudflare.com
uma.ns.cloudflare.com

DNS records live

NS

jerome.ns.cloudflare.com
uma.ns.cloudflare.com

MX

0 mastgroup-com01b.mail.protection.outlook.com

TXT

MS=ms87496395
a4ml4e3jvcruq29v8tgjnq8gds
HXjZeub5UA6At1abPOTIj72cPKO5fi/gKXuz2kKqUfnyCXIw7IepV5xpYASs9QGGcDVQfV1L50jU+CJIeuVNHA==

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com mx a ip4:217.160.47.67 ip4:83.104.60.44 ip4:82.35.9.130/29 ip4:81.128.209.117 include:kundenserver.de ip4:62.6.146.37 ip4:62.6.146.36 include:spf.ess.uk.barracudanetworks.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; sp=none; fo=1; ri=3600; rua=mailto:postmaster@mast-group.com; ruf=mailto:postmaster@mast-group.com,mailto:postmaster@mast-group.com

policy: none (monitoring only) · sp=none

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnl+FUFdRq8t8rCOY0O7KGRm0Nz9rES9paEDmFmwH7bzQEz4cqd/fr7rxEdGm9kALd0ZCB8obVhRCsRory4…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RR4ftIqHcgdzwegaN1TzD6JavuEf/UAIGCHobITw/QiRgcjccclek4toPWD43RTxhNERUE1g1zNiTZhZD…

selectors probed

Certificate (current)

WE1

from 2026-05-07 to 2026-08-05

Expires in 78 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.mast-group.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: sameorigin
permissions-policy: geolocation=(), camera=(), microphone=(), usb=(), fullscreen=(self), payment=(), accelerometer=(), autoplay=(self), display-capture=(self), encrypted-media=(), gyroscope=(), magnetometer=(), midi=(), picture-in-picture=*, sync-xhr=(), screen-wake-lock=(self), web-share=(self), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com/ https://s7.addthis.com/ https://www.cookieconsent.com/ https://cdnjs.cloudflare.com/ https://googletagmanager.com/ https://www.googletagmanager.com/ https://js-eu1.hs-scripts.com/ https://js-eu1.hscollectedforms.net/ https://js-eu1.hs-banner.com/ https://js-eu1.hs-analytics.net/ https://www.google-analytics.com/ http://*.google.com https://*.gstatic.com ; style-src 'self' 'unsafe-inline' https://code.jquery.com https://s7.addthis.com/ https://cookieconsent.com/ https://fonts.googleapis.com/ https://font.gstatic.com ; img-src 'self' https://*.hubspot.com/ https://*.umbraco.com/ https://*.umbraco.org/ https://forms-eu1.hsforms.com/ https://archive.cloud.cwgc.org/ https://*.googleapis.com/ https://maps.gstatic.com/ https://www.google-analytics.com https://stats.g.doubleclick.net https://*.analytics.google.com https://www.googletagmanager.com https://www.google.com https://www.gstatic.com
strict-transport-security: max-age=10886400
cross-origin-opener-policy: unsafe-none
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin

Links to (1)

cookieconsent.com×1

Linked from (1)

sfm-microbiologie.org×2