indexo.dev

ncea.org.uk

.uk crawl

First seen 2026-04-30 · Last seen 2026-05-19 · ok HTTP/1.1 200 992 ms crawled 2026-05-08

IE · 52.18.159.21 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Northumberland Church of England Academy Trust – Enabling everyone in our community to let their light shine
Language
en-US
Generator
WordPress 6.9.4
Canonical
https://ncea.org.uk/

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (6)

  • cdn.realsmart.co.uk×15
  • cdnjs.cloudflare.com×7
  • cdn.jsdelivr.net×5
  • scontent-lhr6-2.xx.fbcdn.net×3
  • kit.fontawesome.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
NCEA Trust, Wansbeck Workspace,Rotary Parkway, Ashington, NE63 8QZ

Registration

Registrar
Fasthosts Internet Ltd
Created
2009-06-11
Expires
2026-06-11 22 days left
Updated
2025-05-13
Name servers
  • ns1.livedns.co.uk.
  • ns2.livedns.co.uk.
  • ns3.livedns.co.uk.

DNS records live

NS
  • ns1.livedns.co.uk
  • ns2.livedns.co.uk
  • ns3.livedns.co.uk
MX
  • 5 d237885.a.ess.uk.barracudanetworks.com
  • 5 d237885.b.ess.uk.barracudanetworks.com
TXT
  • google-site-verification=N4NNivyeRK0ijofFU1tJ1KB-YxQA110m7S4rC7ubJH0
  • MS=453C5AA858ECEC45F5F5DED7F47CEEA2E87B4A05
  • apple-domain-verification=bgQ8gx3awo9bZzlL

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:spf.ess.uk.barracudanetworks.com include:fdspfeuc.freshemail.io ip4:167.89.0.0/17 ip4:208.117.48.0/20 ip4:50.31.32.0/19 ip4:198.37.144.0/20 ip4:198.21.0.0/21 ip4:192.254.112.0/20 ip4:168.245.0.0/17 ip4:149.72.0.0/16 ip4:223.165.113.0/24 ip4:223.165.115.0/24 ip4:223.165.118.0/23 ip4:223.165.120.0/23 ip4:212.54.130.143 ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc-rua@dmarc.service.gov.uk;
policy: quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVr+xU3t9oqgEXP4mIWOp3fpxgFjfLF4PcOnuGHd6P7Ai0ECd+aZSAhbqueK7lJW2qkrfmc6Fcdmze…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgxBxMP+SKuVEHp3jS2qDKcB8oGjIi0o/+50Gf3k/P8KqzUjmfCRSk7cY6beu2gWhahMVa2o3fKoP5yFzs…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CpPG6JNIc7GPYi/fu56DBbARrEaBU29nNQ86ZSvlfCXgO+TkZc1HeVvtV/NoOshF/BjNOD4DA8gMJrUpd…
selectors probed

Certificate (current)

R13
from 2026-05-01 to 2026-07-30
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://ncea.org.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
: no-referrer
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
: microphone=(),camera=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval' 'unsafe-dynamic'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline';
strict-transport-security
max-age=31536000; includeSubDomains

Links to (4)

Linked from (1)