indexo.dev

navaway.fr

.fr crawl

First seen 2026-04-21 · Last seen 2026-05-18 · ok HTTP/1.1 200 1852 ms crawled 2026-05-15

FR · 80.247.235.145 · AS15826 NFrance Conseil

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Navaway : Découvrez la France et l'Europe via nos itinéraires de visite - Navaway
Language
fr
Canonical
https://navaway.fr/
Translations
  • en
  • es
  • fr

Open Graph

url
https://navaway.fr/
title
Navaway : Découvrez la France et l'Europe via nos itinéraires de visite - Navaway
locale
fr_FR
site name
Navaway
description
Circuits audioguidés Visitez les plus belles villes à pied et en autonomie Découvrez les villes qui vous entourent Une navigation interactive à travers les plus belles rues, places et quartiers Des audioguides ludiques avec commentaires historiques, anecdotes et quelques mystères Le concept Villes du moment Nouveaux circuits Derniers articles Circuit à la une Circuits par […]
locale:alternate
es_ES

Technology

CMS
WordPress

Third-party hosts loaded (6)

  • navaway.com×2
  • navaway.es×2
  • gmpg.org×1
  • i.ytimg.com×1
  • moderate.cleantalk.org×1
  • www.youtube.com×1

Social

Registration

Registrar
Infomaniak Network SA
Created
2021-08-11
Expires
2026-09-09 111 days left
Updated
2025-08-31
Name servers
  • nsany1.infomaniak.com
  • nsany2.infomaniak.com

DNS records live

NS
  • nsany1.infomaniak.com
  • nsany2.infomaniak.com
MX
  • 5 mta-gw.infomaniak.ch
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:spf.infomaniak.ch include:sendersrv.com ?all
neutral (?all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-10-06 to 2026-10-31
Expires in 163 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://navaway.fr/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=()
x-content-type-options
nosniff
content-security-policy
img-src 'self' data: *.webqamapps.com *.navaway.fr *.navaway.com *.navaway.es *.navaway.de *.navaway.it navaway.fr navaway.com navaway.es navaway.de navaway.it *.gravatar.com *.w.org *.ytimg.com *.imgix.net *.axept.io ; frame-src 'self' blob: *.webqamapps.com *.navaway.fr *.navaway.com *.navaway.es *.navaway.de *.navaway.it navaway.fr navaway.com navaway.es navaway.de navaway.it *.booking.com *.bstatic.com *.getyourguide.com *.google.com *.youtube.com *.youtube-nocookie.com *.vimeo.com *.daylimotion.com embed-ssl.wistia.com *.freemius.com *.tiqets.com *.viator.com *.civitatis.com https://widgets.bokun.io ; script-src-elem 'self' data: blob: 'unsafe-eval' 'unsafe-inline' *.webqamapps.com *.navaway.fr *.navaway.com *.navaway.es *.navaway.de *.navaway.it navaway.fr navaway.com
strict-transport-security
max-age=16070400; includeSubDomains; preload

Links to (7)

Linked from (3)