indexo.dev

peregrineimmigration.co.uk

.uk crawl

First seen 2026-05-02 · Last seen 2026-05-20 · ok HTTP/1.1 200 1473 ms crawled 2026-05-08

US · 104.18.13.97 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Peregrine Immigration

Technology

CDN
Cloudflare

Social

DNS records live

NS
  • jamie.ns.cloudflare.com
  • nolan.ns.cloudflare.com
MX
  • 0 peregrineimmigration-co-uk.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:_spf-c.cibt.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:42d2557a2906367@rep.dmarcanalyzer.com; ruf=mailto:42d2557a2906367@for.dmarcanalyzer.com; fo=1;
policy: reject (enforced)
DKIM
  • default: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppkQAtFC87/91UQazRWrjun9FAVh3lFQ9FnOIbia1pY1XZz6K/RGehhwkVgLGvLGhug/Q91kH8sJ9ga1…
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHztQAzcFF6q6hhknFF70RcAk1nYa47DXvvuAQ9fRHqpqvxSdF1k4uV0lwlufBmx+e2lcI60fPxC7b…
selectors probed

Certificate (current)

E7
from 2026-05-07 to 2026-08-05
Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://peregrineimmigration.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
DENY
permissions-policy
geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://*.newlandchase.com https://newlandchase.com; img-src 'self' https://*.newlandchase.com https://newlandchase.com https://cdn.jsdelivr.net;font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com;connect-src 'self' https://www.gstatic.com https://*.osano.com; report-uri /api/csp-report; style-src 'unsafe-inline' 'self' https://www.gstatic.com https://fonts.googleapis.com https://fonts.gstatic.com https://*.osano.com; script-src 'unsafe-inline' 'self' 'unsafe-eval' https://*.newlandchase.com https://js.stripe.com https://*.osano.com https://*.googleapis.com; frame-src 'self' https://*.osano.com https://js.stripe.com https://*.googleapis.com;worker-src 'self' https://*.osano.com blob:;
strict-transport-security
max-age=0

Links to (4)

Linked from (1)