mydawa.com
HTML metadata
Technology
- Server
- Sucuri
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (8)
- cdn.mydawa.store×73
- media.gettyimages.com×61
- storagemydawadocsprod.blob.core.windows.net×32
- cdn.jsdelivr.net×3
- maps.googleapis.com×1
- unpkg.com×1
- www.facebook.com×1
- www.googletagmanager.com×1
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 2010-12-29
- Expires
- 2026-12-29 208 days left
- Updated
- 2026-05-14
- Name servers
-
- adel.ns.cloudflare.com
- jarred.ns.cloudflare.com
DNS records live
- NS
-
- adel.ns.cloudflare.com
- jarred.ns.cloudflare.com
- MX
-
- 0 mydawa-com.mail.protection.outlook.com
- TXT
-
Show 6 TXT records
1761922mydawa66936124wmpytj12lcw3jt3629bqd59ycnr18q65v74cc9ft0h3hzl3j19hhwpm6l9ddmv_upkcuntf85me029jim8qborvih7qttxklaviyo-site-verification=JT2yfVmwm45lygxyrsvcqmbv4pfh8ngrkqb6g2
- Verified for
-
- Meta
- Microsoft
Email authentication partial
- SPF
-
v=spf1 include:spf.protection.outlook.com include:spf.emailsignatures365.com include:spf-westeu.emailsignatures365.com include:sendgrid.net -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:info@mydawa.com; ruf=mailto:info@mydawa.com; fo=1policy: none (monitoring only) - DKIM
-
- k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxc780ePVTtK6v55zBacHnjgguhm02hZ/40a8fpYVjgi6E968rWSCBn0rZbZnfqxG9ZrVli0oU02NfOGH7Z… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZ0wbK1QVyfhIyrYNdzCuQcWNEAgwFPOfgWHiPlBokgStqhRp3Uo5Z4jEx6hBTff3psUBdsqWcT5ls8g6hDfx3z6…
selectors probed - k2:
Certificate (current)
Starfield Secure Certificate Authority - G2
Expires in 84 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
geolocation=(self), microphone=(), camera=(), payment=(), usb=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.gstatic.com https://maps.googleapis.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://unpkg.com https://*.clarity.ms https://connect.facebook.net https://cdn.moengage.com https://cdn.mydawa.store https://storagemydawadocuments.blob.core.windows.net https://storagemydawadocsprod.blob.core.windows.net https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://js.appboycdn.com https://snap.licdn.com https://secure.quantserve.com https://*.quantcount.com https://rules.quantcount.com https://static.klaviyo.com https://*.klaviyo.com https://analytics.tiktok.com https://*.tiktok.com https://googleads.g.doubleclick.net https://*.doubleclick.net https://static.criteo.net https://*.criteo.net https://sslwidget.criteo.com https://*.criteo.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com ht- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
cross-origin
Links to (2)
- google.com×1
- apple.com×1