nao.org.uk

.uk crawl

First seen 2026-04-12 · Last seen 2026-05-14 · ok HTTP/1.1 200 10681 ms crawled 2026-05-06

US · 76.223.28.151 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

Home - National Audit Office

Description

The UK’s independent public spending watchdog. We support Parliament to hold the government to account and we help improve public services.

Language

en-GB

Canonical

https://www.nao.org.uk/

Feeds

National Audit Office (NAO) Feed Atom

Open Graph

url: https://www.nao.org.uk/
title: Home - National Audit Office
locale: en_US
site name: National Audit Office (NAO)
description: The UK’s independent public spending watchdog. We support Parliament to hold the government to account and we help improve public services.

Technology

CDN: Amazon CloudFront
Server: nginx
CMS: WordPress

Third-party hosts loaded (1)

cc.cdn.civiccomputing.com×2

Social

Registration

Registrar

Connect Internet Solutions Ltd

Created

2001-11-02

Expires

2030-11-02 1627 days left

Updated

2025-10-15

Name servers

cpanel1.connectinternetsolutions.com.
cpanel2.connectinternetsolutions.com.

DNS records live

NS

cpanel1.connectinternetsolutions.com
cpanel2.connectinternetsolutions.com

MX

10 nao-org-uk.mail.protection.outlook.com

TXT

Show 6 TXT records

neat-pulse-domain-verification-5MzRxxM=c6abde95-04a2-444f-b249-4f58e10b5948
bsVGiwhzIQth73Ybj11z2dSaVLaZZGWhkdHDeTIkdXetuynJcrWkm1lsqYjsxojVLV8vFp5hSfzakEa1MK+6Xg==
docusign=ff4d7187-5ac2-42dd-9b1b-f7e8d78b9fd5
v=spf1 mx include:_spf2.nao.org.uk include:_spf.salesforce.com include:spf.protection.outlook.com include:_spf.distribution.vueliopm.com a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com -all
duo_sso_verification=ZeRBDUiQ56VC1ndkq4JkTcbwMi12pwjLTZHYZHS0MKN5d4SzCksWIj2y9Eqdxjmg
onetrust-domain-verification=346bd844c384435aae65f808d011e904

Certificate (current)

Amazon RSA 2048 M01

from 2026-04-19 to 2026-11-03

Expires in 167 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.nao.org.uk/

present

strict-transport-security
content-security-policy

findings

CSP allows unsafe inline scripts/styles
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src https: wss: 'self' data:; font-src https: 'self' data:; img-src https: 'self' data:; script-src https: 'self' data: 'unsafe-inline' 'unsafe-eval'; style-src https: 'self' 'unsafe-inline'; frame-src https: 'self' data: blob:; frame-ancestors 'self' https://intranet.nao.org.uk;
strict-transport-security: max-age=31536000; includeSubdomains; preload

Links to (7)

Linked from (2)

stoveindustryassociation.org×2
fraudscape.co.uk×1