nas.com
HTML metadata
Technology
- CDN
- Vercel
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- framerusercontent.com×89
- fonts.gstatic.com×2
- smartarget.online×2
- events.framer.com×1
Social
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 1993-08-31
- Expires
- 2035-08-30 3389 days left
- Updated
- 2026-04-07
- Name servers
-
- ns-1375.awsdns-43.org
- ns-1883.awsdns-43.co.uk
- ns-433.awsdns-54.com
- ns-628.awsdns-14.net
DNS records live
- NS
-
- ns-1375.awsdns-43.org
- ns-1883.awsdns-43.co.uk
- ns-433.awsdns-54.com
- ns-628.awsdns-14.net
- MX
-
- 1 smtp.google.com
- TXT
-
Show 10 TXT records
google-site-verification=92WT-oxW3T04bxqr6KKfi5KKCc8oKErPc67YPSwxdnQgoogle-site-verification=9FvuMA01HvIX3fLiUu2KQ63IF9yoQfrUZ4iFYcmGJBggoogle-site-verification=OC_t5oioHCWmXA2p90-8i7XiRoaKtdYVgYcZy7pJ41Egoogle-site-verification=S5Xhbky9HJkBggDBmm3BbezgocS0Sw068N9QxAVGE8wklaviyo-site-verification=TYiPsVstripe-verification=268f85a50527c630ccf6a908d80f8ad7eec8130512d5408eb698873b6e0dd172stripe-verification=df8e4993d7a948a86ce7621ad675c04e3d5947cd545fdd7468e65d931b23227dstripe-verification=dfbe465f862a5dc136e96ae4f37f0f6e3d41cb42db3fe291d6bd7269ab05e300anthropic-domain-verification-3x4gfa=xjXt8M8DYj5FtTlfWcTDJUTe6google-gws-recovery-domain-verification=7000729
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com include:sendgrid.net -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.emailpolicy: quarantine - DKIM
-
- google:
v=DKIM1;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCo+JwvfUAjrvrPeqqzvFH71cDMhpZ+mEz+Jj9LX4n0NT67pLOtrHMPJejCaBsJRmwHueaY5TXyEX/v43mtjufP… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/zHZ/rC9H2v8fmX22mQjAmB1qeGhKTBbwASFcTaNlbqnf+ZLFQBJhjEfmn9JXg6FQJgEYbj7Vi61bqWyu… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdffqMrjTcsUdzj3ynBxWzeMvbQ6zZ5FVFCvR2EsC4nJD4W+83ZJ6eTE1RZB983vyJiEtxfHChh931pCi4OQSoOi…
selectors probed - google:
Certificate (current)
R12
Expires in 48 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self' dev-nas.io dev-nas.com nas.com dev-nas-io.web.app m.nas.io nas.io *.dev-nas.io *.nas.io *.dev-nas.com *.nas.com *.nasacademy.com data: *.framer.website server-side-tagging-o2ntnaqrua-uc.a.run.app; img-src 'self' i.vimeocdn.com i.ytimg.com dev-nas-io.web.app m.nas.io media.licdn.com data: https: blob:; script-src * 'self' challenges.cloudflare.com dev-nas-io.web.app m.nas.io cdn.jsdelivr.net connect.facebook.net snap.licdn.com 'unsafe-eval' 'unsafe-inline' blob: data: gap:; connect-src * 'self' dev-nas-io.web.app m.nas.io cdn.jsdelivr.net 'unsafe-inline' blob: data: gap:; media-src dev-nas-io.web.app m.nas.io *.dev-nas.io *.nas.io *.nasacademy.com *.vercel.app blob: *.cloudfront.net s3.ap-southeast-1.amazonaws.com *.nas.media px.ads.linkedin.com; object-src 'none'; style-src 'self' dev-nas-io.web.app m.nas.io cdnjs.cloudflare.com 'unsafe-inline' *.nas.io *.dev-nas.io *.nas.com *.dev-nas.com fonts.googleapis.com www.googletagmanager.com; font-src 'self' dev-nas-io.web.- strict-transport-security
max-age=31536000
Links to (9)
- apple.com×1
- facebook.com×1
- google.com×1
- greenhouse.io×1
- instagram.com×1
- linkedin.com×1
- tiktok.com×1
- x.com×1
- youtube.com×1
Linked from (1)
- nas.io×1