indexo.dev

maya-pci.com

.com crawl

First seen 2026-05-31 · Last seen 2026-05-31 · ok HTTP/1.1 200 258 ms crawled 2026-06-01

CH · 20.250.100.191 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
MAYA Private Capital Investments
Description
An independent private markets firm based in Geneva. Bespoke capital solutions since 2012.
Language
en
Canonical
https://maya-pci.com

Open Graph

url
https://maya-pci.com
title
MAYA Private Capital Investments
locale
en_US
site name
MAYA Private Capital Investments
description
An independent private markets firm based in Geneva. Bespoke capital solutions since 2012.

Technology

CMS
Next.js

Social

Contact

Email
Phone
Address
Rue de Rive 10, 1204, Genève, CH

Registration

Registrar
Infomaniak Network SA
Created
2024-10-03
Expires
2034-10-03 3044 days left
Updated
2025-10-31
Name servers
  • ns11.infomaniak.ch
  • ns12.infomaniak.ch

DNS records live

NS
  • ns11.infomaniak.ch
  • ns12.infomaniak.ch
MX
  • 0 mayapci-com01b.mail.protection.outlook.com
Verified for
  • Anthropic
  • Google
  • Microsoft
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;sp=quarantine;pct=100;rua=mailto:dmarc@okam.ch;ruf=mailto:dmarc@okam.ch;ri=86400;aspf=s;adkim=s;fo=1;
policy: quarantine · sp=quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mVkJ3NYT7jrjSeCLhuXyvjHBvjYPzaesOD9P8xmmG6bA78QgY0ymneeT5J5GbeA+e3sgOTKDRGiRH…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-05-08 to 2026-11-09
Expires in 159 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://maya-pci.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=(), interest-cohort=(), browsing-topics=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'none'; form-action 'self'; img-src 'self' data: blob: https://*.blob.core.windows.net https://api.mapbox.com https://events.mapbox.com https://*.tiles.mapbox.com https://www.openstreetmap.org https://*.tile.openstreetmap.org; font-src 'self' data:; style-src 'self' 'unsafe-inline' https://hcaptcha.com https://*.hcaptcha.com https://newassets.hcaptcha.com; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' https://hcaptcha.com https://*.hcaptcha.com https://newassets.hcaptcha.com https://*.in.applicationinsights.azure.com https://*.livediagnostics.monitor.azure.com https://js.monitor.azure.com https://www.clarity.ms https://*.clarity.ms; connect-src 'self' https://hcaptcha.com https://*.hcaptcha.com https://newassets.hcaptcha.com https://*.in.applicationinsights.azure.com https://*.livediagnostics.monitor.azure.com https://js.monitor.azure.com https://www.clarity.ms https://*.clarity.ms https://*.blob.core.window
strict-transport-security
max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy
same-origin
cross-origin-resource-policy
same-origin

Links to (1)

Linked from (1)