openstudycollege.com
openstudycollege.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Shopify
Third-party hosts loaded (8)
- cdn.shopify.com×38
- res.cloudinary.com×29
- api.feefo.com×2
- cdn.popt.in×1
- sdk.snapfinance.co.uk×1
- shop.app×1
- storage.googleapis.com×1
- try.abtasty.com×1
Social
Contact
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2007-07-05
- Expires
- 2030-07-05 1506 days left
- Updated
- 2025-09-24
- Name servers
-
- ns09.domaincontrol.com
- ns10.domaincontrol.com
DNS records live
- NS
-
- ns09.domaincontrol.com
- ns10.domaincontrol.com
- MX
-
- 0 openstudycollege-com.mail.protection.outlook.com
- TXT
-
v=DMARC1; p=none; rua=mailto:dmarc@openstudycollege.com;
- Verified for
-
- Meta
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 mx a include:25812532.spf08.hubspotemail.net include:spf.exclaimer.net include:spf.protection.outlook.com include:spf.serverdata.net ip4:78.109.160.120 include:spf.mandrillapp.com include:servers.mcsv.net -allstrict (-all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
Show 6 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJuPuv+uQm8PjmTrSAbUn4jROqa3ylxU4TR8v6DAy9ODWsyRyjqEGVTSyGEALa3i+sdCLfkMjdthzNgSo7lQ… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpRb/Px20L+IDq18t/rG66xuMGHhcQtdIqi/zzUEpwZfx2sO57MSKha/zzzENBZJ9crZ4/VdNNvehc… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - mail:
v=DKIM1;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDpwoH99CBviwgy1bI2DfNLI3gzpehyQiLrUW7xldTOeT55oOiqecsS+r22qqsX/0/kTEgWzFGHJk//peeb9VGFys3Vtl… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBkIs7Y3798NMcVSyPdot6ZurEjR7S3+/ugqfHyptA9M3fAxECBU2YF9XzbBA3anXl9+rg6t8Mqscdzq6r… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCRDQUedQCRrQWscy1F85u37XV30Y39ojLftq51HVKzntIj0+hPk33zaMSTj6gorE+PyIe6K7S1zZrwTYyrlVuzFv…
selectors probed - selector1:
Certificate (current)
E7
Expires in 48 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
base-uri 'self'; default-src 'self' https://cdn.shopify.com https://shopify.com http://localhost:* 'self' 'nonce-68de753732ab842d85b9ed52efbb614f' https://cdn.shopify.com https://shopify.com; frame-ancestors 'none'; style-src 'self' https://cdn.shopify.com https://api.feefo.com http://register.feefo.com https://register.feefo.com https://fonts.googleapis.com https://storage.googleapis.com 'self' 'unsafe-inline' https://cdn.shopify.com; connect-src 'self' https://analytics.tiktok.com https://*.tiktokw.us https://api-eu1.hubapi.com https://api-eu1.hubspot.com https://api.feefo.com https://api.config-security.com https://api-production.polaranalytics.com https://ariane.abtasty.com https://bat.bing.com https://bat.bing.net https://*.bing.com https://cdn.shopify.com https://*.clarity.ms https://conf.config-security.com https://*.hubspot.com https://ct.pinterest.com https://dcinfos-cache.abtasty.com https://display.popt.in https://eu-assets.i.posthog.com https://eu.i.posthog.com https://*.eu- strict-transport-security
max-age=31536000
Links to (7)
- facebook.com×1
- instagram.com×1
- linkedin.com×1
- pinterest.co.uk×1
- tiktok.com×1
- wa.me×1
- youtube.com×1