indexo.dev

observatoriomargenes.es

.es crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1102 ms crawled 2026-05-19

ES · 77.73.203.110 · AS20905 Banco de Espana

Reputation 100/100

Classifying

HTML metadata

Title
Inicio - Observatorio de Márgenes Empresariales
Language
es
Canonical
https://www.observatoriomargenes.es/wme/es/

Open Graph

url
https://www.observatoriomargenes.es/content/wme/es.html
title
Inicio - Observatorio de Márgenes Empresariales
locale
es_
site name
Observatorio de Márgenes Empresariales

Technology

CDN
Azure Front Door

Third-party hosts loaded (2)

  • s7g10.scene7.com×5
  • rum.hlx.page×1

DNS records live

NS
  • a1-96.akam.net
  • a10-67.akam.net
  • a13-64.akam.net
  • a28-66.akam.net
  • a3-64.akam.net
  • a6-64.akam.net

Email authentication no MX

SPF
v=spf1 -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Entrust OV TLS Issuing RSA CA 2
from 2025-07-29 to 2026-08-30
Expires in 101 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.observatoriomargenes.es/wme/es/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(*),fullscreen=(*),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),sync-xhr=(self),usb=(),web-share=(),xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
upgrade-insecure-requests; default-src 'self' *.bde.es *.adobecqms.net *.scene7.com; style-src 'self' *.bde.es *.adobecqms.net d3usyxos00s4ty.cloudfront.net *.genial.ly *.genially.com fonts.googleapis.com *.gstatic.com *.ex.co *.spotifycdn.com content.powerapps.com *.dwcdn.net 'unsafe-inline'; script-src 'self' https://rum.hlx.page https://ajax.googleapis.com https://s3.amazonaws.com/downloads.mailchimp.com/ *.list-manage.com *.bde.es *.adobecqms.net *.google-analytics.com *.googletagmanager.com *.adobedtm.com *.piwik.pro *.2o7.net www.google.com/recaptcha/ www.gstatic.com/recaptcha/ www.youtube.com *.ytimg.com maps.googleapis.com *.playbuzz.com *.ex.co *.genial.ly *.genially.com d3usyxos00s4ty.cloudfront.net 'unsafe-inline' 'unsafe-eval' addsearch.com cdn.jsdelivr.net *.spotifycdn.com open.spotify.com *.dwcdn.net blob:; img-src 'self' https://cdn-images.mailchimp.com https://ajax.googleapis.com https://mcusercontent.com *.bde.es *.adobecqms.net *.scene7.com *.google-analytics.com *.g
strict-transport-security
max-age=63072000; includeSubdomains;
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (3)

Linked from (1)