indexo.dev

northridgefinance.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1438 ms crawled 2026-05-19

GB · 89.185.145.219 · AS41678 The Internet Business Ltd

Reputation 100/100

Classifying

HTML metadata

Title
Home - Northridge
Language
en
Generator
WordPress 6.9.4
Canonical
https://www.northridgefinance.com/

Open Graph

url
https://www.northridgefinance.com/
title
Home - Northridge
locale
en_US
site name
Northridge

Technology

Server
nginx
CMS
WordPress
Fonts
  • Adobe Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • www.google.com×3
  • ajax.googleapis.com×1
  • cc.cdn.civiccomputing.com×1
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • maps.googleapis.com×1
  • s.w.org×1
  • use.typekit.net×1

Registration

Registrar
MarkMonitor Inc.
Created
2004-07-16
Expires
2026-07-16 57 days left
Updated
2024-06-14
Name servers
  • ns1.bank-of-ireland.net
  • ns2.bank-of-ireland.net
  • pdns1.cscdns.net
  • pdns2.cscdns.net

DNS records live

NS
  • ns1.bank-of-ireland.net
  • ns2.bank-of-ireland.net
  • pdns1.cscdns.net
  • pdns2.cscdns.net
MX
  • 20 incoming.mail.tibus.net

Email authentication strong

SPF
v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-09-03 to 2026-10-05
Expires in 138 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.northridgefinance.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.googleapis.com *.google.com northridgefinance.com *.northridgefinance.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.clarity.ms *.civiccomputing.com *.google.com *.gstatic.com asset.gomoxie.solutions blob: cdn.cookielaw.org northridgefinance.com *.northridgefinance.com google-analytics.com www.google-analytics.com ssl.google-analytics.com stats.g.doubleclick.net ajax.googleapis.com maps.googleapis.com maps.google.com www.googletagmanager.com googletagmanager.com tagmanager.google.com; style-src 'self' 'unsafe-inline' data: *.jquery.com blob: cdn.cookielaw.org northridgefinance.com *.northridgefinance.com fonts.googleapis.com 'unsafe-inline' maps.googleapis.com maps.google.com www.googletagmanager.com tagmanager.google.com; img-src 'self' data: c.clarity.ms *.worldpay.com *.bing.com *.jquery.com *.google-analytics.com cdn.cookielaw.org fonts.gstatic.com northridgefinance.com *.northridgefinance.com s.w.org
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (3)

Linked from (2)