indexo.dev

netpromotersystem.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 3546 ms crawled 2026-05-16

SE · 217.114.94.2 · AS30811 Optimizely AB

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Net Promoter System & Net Promoter Score | Bain & Company
Description
Building on the Net Promoter Score, the Net Promoter System provides a reliable way to focus an entire organization around earning customers’ loyalty.
Language
en
Canonical
https://www.netpromotersystem.com/
Translations
  • en

Open Graph

url
https://www.netpromotersystem.com/
title
Net Promoter System®
locale
en
site name
Bain

Technology

CDN
Cloudflare
CMS
Gatsby
Cookie consent
  • TrustArc

Third-party hosts loaded (4)

  • consent.trustarc.com×1
  • dev.visualwebsiteoptimizer.com×1
  • lp.bain.com×1
  • players.brightcove.net×1

Social

Contact

Phone

Registration

Registrar
Amazon Registrar, Inc.
Created
2010-06-21
Expires
2026-06-21 32 days left
Updated
2026-05-13
Name servers
  • ns-1226.awsdns-25.org
  • ns-131.awsdns-16.com
  • ns-1775.awsdns-29.co.uk
  • ns-973.awsdns-57.net

DNS records live

NS
  • ns-1226.awsdns-25.org
  • ns-131.awsdns-16.com
  • ns-1775.awsdns-29.co.uk
  • ns-973.awsdns-57.net
TXT
Show 5 TXT records
  • _ju7ubhbfcax44vqv4cx1edq0b31ryze
  • p847y758kf6tf23gd1hmvz18qbff8fvvgoogle-site-verification=9N0UBsneJ99M4cpryZWHiMj1i1ZYpKn2S6oL6YqFFKg
  • tzyhbw763d55zylc5wcrh8wx43jc4ykc
  • 3xcj6vrxty22s767bsxf14xrhqgcslbc
  • 6jxtmtbvy44vg6zs88zdy2801gyyhv2j

Email authentication no MX

SPF
v=spf1 -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-10-31 to 2026-10-31
Expires in 164 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.netpromotersystem.com/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
script-src 'nonce-nC2M95s4BfHpkf/s8a1SWWrTWeWn2RchRYxXpGFkAwk=' 'strict-dynamic' 'self' 'unsafe-inline' 'unsafe-eval' https: http:; object-src 'self';

Links to (4)

Linked from (1)