mindtheg.com
mindtheg.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Gatsby
- Stack
- PHP
- Analytics
-
- Cloudflare Insights
- Google Tag Manager
Third-party hosts loaded (7)
- cdn.jsdelivr.net×4
- js-eu1.hs-scripts.com×1
- mindtheg.uk×1
- static.addtoany.com×1
- static.cloudflareinsights.com×1
- www.facebook.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- Realtime Register B.V.
- Created
- 2015-09-24
- Expires
- 2026-09-24 111 days left
- Updated
- 2025-09-11
- Name servers
-
- andronicus.ns.cloudflare.com
- diva.ns.cloudflare.com
DNS records live
- NS
-
- andronicus.ns.cloudflare.com
- diva.ns.cloudflare.com
- MX
-
- 0 netmailers.mindtheg.eu
- 1 globalartproduction.mindtheg.eu
- TXT
-
MS=18231809linkedin-site-verification=0d0d8cc5-133c-4a1c-8768-b4abb1e761dc
- Verified for
-
- Brevo
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.mailjet.com include:mxsspf.sendpulse.com +a +mx +ip4:94.130.51.176 +ip4:94.130.51.151 +include:83105f76.ppspf.net +include:mailjet.com +include:143839764.spf05.hubspotemail.net ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=reject;sp=reject;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400;rua=mailto:97a02f93c5e541e198d5b4d608f955ce@dmarc-reports.cloudflare.netpolicy: reject (enforced) · sp=reject - DKIM
-
Show 4 DKIM selectors
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfpIVqZuyqgeMuiUiiRpbRBRm+RZtoGYNaOEocPJwwccSZgJUq+R+P5eGi+oa7oC/hTetfKD1ZRe3Z… - mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0Wv6DBXlp+xmTf3cwy3NHXU8I/HMNq0ui92RJMgTVZfaXnEEbl7BVqDHFkDihUD/BmzvOv2d9PUGfbnyF… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6PKeiDwaGN/dnLHf6/JxEIQEMR7/oSstkWCd+A3h59Xq7YSVfC1i2zXeH5vGTHZFsdXkU/QZjXTPodyQ/…
selectors probed - default:
Certificate (current)
WE1
Expires in 59 days
HTTP security headers
- present
-
- content-security-policy
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src *; script-src * blob: 'unsafe-inline' 'unsafe-eval'; script-src-elem * blob: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; style-src-elem * 'unsafe-inline'; img-src * data: blob:; font-src * data:; connect-src *; frame-src *; object-src *; base-uri *; form-action *; frame-ancestors *;- content-security-policy-report-only
font-src fonts.googleapis.com fonts.gstatic.com *.fontawesome.com https://fonts.bunny.net https://fonts.gstatic.com *.alothemes.com *.magepow.com eu.mindtheg.com us.mindtheg.com https://cdnjs.cloudflare.com *.gstatic.com 'self' data: *.stripe.com *.stripecdn.com klarna.com *.klarna.com *.klarnacdn.net *.klarnaevt.com *.link.com *.amazon.com *.tawk.to data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.tawk.to *.facebook.com 'self' 'unsafe-