indexo.dev

nabicvalves.com

.com crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 854 ms crawled 2026-06-01

US · 104.26.3.250 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
NABIC - Safety and Pressure Relief Valves
Description
NABIC Valves manufacture and sell safety and pressure relief valves and control valves. Suitable for a wide variety of fluids including steam, hot water and air.
Language
en-GB
Canonical
https://www.nabicvalves.com/

Open Graph

url
https://www.nabicvalves.com/
title
NABIC Valves
locale
en_GB
site name
NABIC Valves
description
NABIC - Safety and Pressure Relief Valves

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts

Third-party hosts loaded (4)

  • cdn.jsdelivr.net×2
  • use.typekit.net×2
  • www.google.com×2
  • www.googletagmanager.com×1

Social

Registration

Registrar
eNom, LLC
Created
2014-10-02
Expires
2026-10-02 121 days left
Updated
2025-09-03
Name servers
  • davina.ns.cloudflare.com
  • dean.ns.cloudflare.com

DNS records live

NS
  • davina.ns.cloudflare.com
  • dean.ns.cloudflare.com
MX
  • 10 a.mx.apm-internet.net
  • 20 b.mx.apm-internet.net

Email authentication partial

SPF
v=spf1 a ip4:162.13.178.0/24 include:mailgun.org ~all
softfail (~all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-05-01 to 2026-07-30
Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.nabicvalves.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; manifest-src 'self'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' 'report-sample' cc.cdn.civiccomputing.com app.purechat.com cdn.datatables.net maps.googleapis.com *.cloudflare.com cdn.jsdelivr.net *.purechatcdn.com www.bimstore.co *.g.doubleclick.net ssl.google-analytics.com *.google-analytics.com *.google.com *.googletagmanager.com *.gstatic.com; style-src 'self' blob: 'unsafe-inline' 'report-sample' fonts.googleapis.com cdn.datatables.net netdna.bootstrapcdn.com *.cloudflare.com *.typekit.net; object-src 'none'; base-uri 'self'; connect-src * 'self'; font-src 'self' data: fonts.gstatic.com netdna.bootstrapcdn.com *.typekit.net; frame-src 'self' online.fliphtml5.com websiteintegration.source.thenbs.com www.bimstore.co *.youtube.com *.doubleclick.net *.google.com *.tagmanager.com *.googletagmanager.com; img-src * 'self' data: blob:; media-src 'self' *.vimeo.com *.vimeocdn.com; worker-src 'self' blob:; report-uri https://cspreporting.uk/csp/; report-to csp
strict-transport-security
max-age=15552000

Links to (6)

Linked from (1)