mediasalad.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-07 · ok HTTP/1.1 200 1958 ms crawled 2026-05-07

US · 134.199.187.25 · AS14061 DigitalOcean, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Grant Writing, Denver Web Design, Communications Consultant, Marketing Agency

Description

Media Salad of Denver, Colorado brings expertise and quality to your grant writing, branding, web design, marketing & creative

Language

en-US

Generator

Divi Child theme for MediaSalad.com v.1.0.1

Canonical

https://mediasalad.com/

Feeds

Media Salad » Feed RSS
Media Salad » Comments Feed RSS

Open Graph

url: https://mediasalad.com/
title: Grant Writing, Denver Web Design, Communications Consultant, Marketing Agency
locale: en_US
site name: Media Salad
description: Media Salad of Denver, Colorado brings expertise and quality to your grant writing, branding, web design, marketing & creative

Technology

Server: nginx
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×4
maxcdn.bootstrapcdn.com×2

Social

Contact

Phone

Address

rd of VisitorsbyMedia Salad|Sep 18, 2024

Registration

Registrar

GoDaddy.com, LLC

Created

2004-02-04

Expires

2027-02-04 260 days left

Updated

2026-02-05

Name servers

ns41.domaincontrol.com
ns42.domaincontrol.com

DNS records live

NS

ns41.domaincontrol.com
ns42.domaincontrol.com

MX

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com
30 alt2.aspmx.l.google.com
40 aspmx2.googlemail.com
50 aspmx3.googlemail.com

Email authentication partial

SPF

not published

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

from 2026-04-14 to 2026-07-13

Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://mediasalad.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: bluetooth=(), camera=(), gamepad=(), hid=(), midi=(), serial=(), usb=(), xr-spatial-tracking=(), autoplay=(self), encrypted-media=(self), fullscreen=(self), picture-in-picture=(self), speaker-selection=(), accelerometer=(), ambient-light-sensor=(), battery=(), ch-ua-high-entropy-values=(), geolocation=(), gyroscope=(), local-fonts=(), magnetometer=(), clipboard-read=(self), clipboard-write=(self), cross-origin-isolated=(), display-capture=(), document-domain=(), idle-detection=(), microphone=(), payment=(self), publickey-credentials-get=(self), screen-wake-lock=(), storage-access=(), web-share=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self' https: data:; connect-src 'self' https: wss:; img-src 'self' data: https: blob:; object-src 'self' https://*.google.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; script-src-elem 'self' 'unsafe-inline' https: blob:; style-src 'self' 'unsafe-inline' https:; base-uri 'self'; frame-ancestors 'self'; form-action 'self'; upgrade-insecure-requests
strict-transport-security: max-age=31536000;
cross-origin-resource-policy: same-origin

Links to (4)

Linked from (2)

ndasauniversity.com×2
ndasa.com×2