outquotes.com
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (1)
- rsms.me×1
Registration
- Registrar
- NameCheap, Inc.
- Created
- 2024-11-15
- Expires
- 2026-11-15 179 days left
- Updated
- 2025-10-16
- Name servers
-
- ns-1244.awsdns-27.org
- ns-1711.awsdns-21.co.uk
- ns-924.awsdns-51.net
- ns-98.awsdns-12.com
DNS records live
- NS
-
- ns-1244.awsdns-27.org
- ns-1711.awsdns-21.co.uk
- ns-924.awsdns-51.net
- ns-98.awsdns-12.com
- MX
-
- 0 outquotes-com.mail.protection.outlook.com
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificates
Loading certificate
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; connect-src 'self' https://*.azurewebsites.net https://*.googletagmanager.com https://*.google-analytics.com https://analytics.google.com https://*.analytics.google.com https://stats.g.doubleclick.net https://api.stripe.com https://*.stripe.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googletagmanager.com https://*.google-analytics.com https://analytics.google.com https://*.analytics.google.com https://tagmanager.google.com https://js.stripe.com https://*.stripe.com; style-src 'self' 'unsafe-inline' https://rsms.me https://fonts.googleapis.com; font-src 'self' data: https://rsms.me https://fonts.gstatic.com; img-src 'self' data: blob: https: https://*.googl