indexo.dev

oxfordofficialwalkingtours.org

.org crawl

First seen 2026-04-12 · Last seen 2026-05-20 · ok HTTP/1.1 200 2348 ms crawled 2026-05-20

US · 104.21.47.114 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

sector travel type ecommerce

HTML metadata

Title
Oxford Official Walking Tours | Oxford University Walking Tours
Description
Explore Oxford’s most famous buildings steeped in history and recognised around the world with one of our knowledgeable guides. Book a walking tour online!
Language
en-US
Canonical
https://www.oxfordofficialwalkingtours.org/

Open Graph

url
https://www.oxfordofficialwalkingtours.org/
title
Oxford Official Walking Tours | Oxford University Walking Tours
site name
Oxford Official Walking Tours
description
Explore Oxford’s most famous buildings steeped in history and recognised around the world with one of our knowledgeable guides. Book a walking tour online!

Technology

CDN
Cloudflare
CMS
WordPress
jQuery
3.6.0
Analytics
  • Google Tag Manager

Third-party hosts loaded (5)

  • cdnjs.cloudflare.com×2
  • fareharbor.com×1
  • stats.wp.com×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
Langford Locks, OX5 1HZ, Kidlington, England, GB

Registration

Registrar
IONOS SE
Created
2018-11-22
Expires
2026-11-22 185 days left
Updated
2025-10-28
Name servers
  • cody.ns.cloudflare.com
  • lucy.ns.cloudflare.com

DNS records live

NS
  • cody.ns.cloudflare.com
  • lucy.ns.cloudflare.com
MX
  • 10 mailserver.oxfordofficialwalkingtours.org
TXT
  • ca3-e7564cc845864fbcac6a587cd1b61bce
Verified for
  • Google

Email authentication weak

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-03 to 2026-07-02
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.oxfordofficialwalkingtours.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https: http: blob:; font-src 'self' data: https:; connect-src 'self' https: wss:; media-src 'self' https:; object-src 'none'; base-uri 'self'; frame-src 'self' https:; frame-ancestors 'self'
strict-transport-security
max-age=31536000
cross-origin-opener-policy
same-origin-allow-popups

Links to (7)

Linked from (1)