ninjatheory.com

HTML metadata

Title: Ninja Theory Ltd - BAFTA Award-Winning Xbox Game Studio in Cambridge, UK
Description: Ninja Theory Ltd, BAFTA Award-Winning Xbox Game Studio in Cambridge, UK
Language: en-GB

Technology

Server: nginx
CMS: Nuxt
JS framework: Vue

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×2
fonts.gstatic.com×1

Social

Registration

Registrar

Register.com - Network Solutions, LLC

Created

2004-11-04

Expires

2031-11-04 1993 days left

Updated

2022-11-21

Name servers

dns105.register.com
dns106.register.com
ns1.dnsbycomodo.net
ns2.dnsbycomodo.net

DNS records live

NS

ns1.dnsbycomodo.net
ns2.dnsbycomodo.net

MX

10 ninjatheory-com.mail.protection.outlook.com

TXT

Show 5 TXT records

monkey is the best
parsec-domain-verification=td_2fPWweuwXXArNEcEpbk57cZ8rkk
vgjdloprr3o84kuft8vco2jveg
1hj2ei1ipqsuhs3csdtqki22s3
25b2c0e6d937b3fb673518ef54c735a8cf0362177a10274096

Verified for

Atlassian
DocuSign
Miro

Email authentication strong

SPF

v=spf1 ip4:94.228.39.34/28 include:spf.protection.outlook.com include:servers.mcsv.net a mx ptr ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;rua=mailto:dmarc@ninjatheory.com;ruf=mailto:dmarc@ninjatheory.com

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCNGe2zajqmvLC/xRTvgTEVCaq1p3PaDXZgmXYMDkHePzhtLcWs06bwNQSAdlzFLDy/z56WjN1LpqbTQC8Xph…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFxBOFURYNS4U/Ft4cS29E7nKLbGfao3uv2TB5kLc1FV6f8nisLLW1iVS55yC9G8jaWTiwknWi/GSW…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-02-27 to 2026-08-24

Expires in 95 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://ninjatheory.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=(), fullscreen=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self'; img-src 'self' https://ninjatheory.azureedge.net https://img.youtube.com data: https://maps.gstatic.com https://maps.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://wcpstatic.microsoft.com https://maps.googleapis.com; style-src 'self' 'unsafe-inline' https://use.typekit.net https://p.typekit.net https://fonts.googleapis.com; font-src 'self' https://use.typekit.net https://p.typekit.net data: https://fonts.gstatic.com; connect-src 'self' https://api.ninjatheory.com https://maps.googleapis.com https://maps.gstatic.com; frame-src 'self' https://www.youtube.com https://www.youtube-nocookie.com https://www.google.com; worker-src 'self' blob:; media-src 'self' https://ninjatheory.azureedge.net;
strict-transport-security: max-age=31536000; includeSubDomains

Links to (3)

Linked from (1)

3diosound.com×1