nhseportfolios.org

.org crawl

First seen 2026-04-12 · Last seen 2026-05-20 · ok HTTP/1.1 200 1129 ms crawled 2026-05-19

GB · 51.140.184.75 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title

NHS ePortfolios

Description

Supporting ongoing learning and personal development within a variety of medical and healthcare organisations in the UK and overseas.

Language

Feeds

NHS ePortfolios Release Notes Feed RSS

Technology

Server: Microsoft-IIS
CMS: Ghost

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Registration

Registrar

Mesh Digital Limited

Created

2006-07-24

Expires

2029-07-24 1159 days left

Updated

2024-06-11

Name servers

ns69.domaincontrol.com
ns70.domaincontrol.com

DNS records live

NS

ns69.domaincontrol.com
ns70.domaincontrol.com

MX

0 smtp.secureserver.net
10 mailstore1.secureserver.net

TXT

3fil448i3jpm2hcu4c40v71gao
D6562032

Verified for

Google

Email authentication strong

SPF

v=spf1 mx ip4:51.140.184.75 include:spf.protection.outlook.com include:_spf.atlassian.net include:u4675362.wl113.sendgrid.net include:secureserver.net -all

strict (-all)

DMARC

v=DMARC1; p= quarantine; pct=100; rua=mailto:dmarc@nhseportfolios.org

policy: quarantine

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzJRFPL7DQ89dm5gx6igPjcIX1lNrpR3FidwFgYCyhn+qP9IG+M0xi87AT6A3J7KRjHgztbBWykd5XQOB/…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDtP6P3+Vx7ho8cqRxhKD4VgjBkkx/AZ3MTW8iGme+ahAIN49Av0kE168OTlY/fV3qQwoaSSLJleVZmP/7kVKolDg…

selectors probed

Certificate (current)

Starfield Secure Certificate Authority - G2

from 2026-01-09 to 2027-02-10

Expires in 265 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.nhseportfolios.org/Anon/Login

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=*, geolocation=*, microphone=*
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://www.googletagmanager.com 'unsafe-inline' ; style-src 'self' 'unsafe-inline' ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googletagmanager.com ; img-src 'self' https://prodstoragehelpcentre.z33.web.core.windows.net data: https://*.google-analytics.com https://*.googletagmanager.com ; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com
strict-transport-security: max-age=2592000

Links to (2)

scot.nhs.uk×3
youtube.com×3