indexo.dev

picknrg.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-15 · ok HTTP/1.1 200 1743 ms crawled 2026-05-15

US · 158.81.201.240 · AS55102 NRG Energy, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Electric & Natural Gas Supplier | NRG Home
Description
NRG Home is rethinking energy. Choose us as your natural gas and electric supplier and get the energy plan that's right for you.
Language
en

Technology

Server
Apache

Third-party hosts loaded (4)

  • ajax.googleapis.com×4
  • assets.adobedtm.com×1
  • cdn.optimizely.com×1
  • cdnjs.cloudflare.com×1

Social

Contact

Phone
Address
st LLC, a subsidiary of NRG Energy, Inc.©2026

Registration

Registrar
GoDaddy Corporate Domains, LLC
Created
2013-05-20
Expires
2027-05-20 366 days left
Updated
2026-04-19
Name servers
  • ns03.gcd-dns.com
  • ns04.gcd-dns.com

DNS records live

NS
  • ns03.gcd-dns.com
  • ns04.gcd-dns.com
MX
  • 10 picknrg-com.mail.protection.outlook.com
TXT
Show 7 TXT records
  • n9lvpkwzmpnyrcltqswff7mscr4sk2cp
  • _obvyhsdnchskrhajarreq0qxgeqipp2
  • 89rt8t8y8m1c77y0fm7gj84xjmrrwbq1
  • 9bksnhjs2tgmxnyphkkx2425m9l8x5xx
  • google-site-verification=3mTsxb058N0je5z1c3unsSuuQwESrL74it2AExUcqnM
  • gvs6cdqclsgrh8vjbxhqcyk0k613wzj5
  • MS=ms29698783

Email authentication strong

SPF
v=spf1 include:amazonses.com ip4:207.166.95.11 ip4:207.166.92.11 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:s3lchkgm@ag.us.dmarcian.com; ruf=mailto:s3lchkgm@fr.us.dmarcian.com;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIAamQrOLLwFMWAJfRYj77HfbAl1nyROQQ1EVqLA7RD7rTDPjPNszUs2iQyeNPV6d3IERB5fQe+43M…
selectors probed

Certificate (current)

Thawte TLS RSA CA G1
from 2025-10-22 to 2026-11-05
Expires in 170 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://picknrg.com/en/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin
x-frame-options
ALLOW-FROM https://*.picknrg.com
x-content-type-options
nosniff
content-security-policy
default-src 'self'; font-src *;img-src * https://*.niceincontact.com data: *.contentsquare.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.optimizely.com https://*.niceincontact.com https://*.docusign.com http://wntias01 https://*.docusign.net https://*.basis.net https://*.picknrg.com https://cdn.cookielaw.org https://cookie-cdn.cookiepro.com https://privacyportal.onetrust.com https://geolocation.onetrust.com https://phoenixpixeltopost.com https://www.pixel.logtrackback.com https://scripts.inmarkethub.com https://lciapi.ninthdecimal.com https://stg-wheelock.nrg.com https://wheelock.nrg.com https://www.clarity.ms/ https://bttrack.com https://*.bttrack.com https://*.twitter.com https://static.ads-twitter.com https://s.pinimg.com https://ads.nextdoor.com https://up.pixel.ad https://insitez.blob.core.windows.net https://acdn.adnxs.com https://js.adsrvr.org https://beacon.sojern.com https://wnttrdp03.nrgenergy.com https://reliantenergy.sc.omtrdc.net https://fonts.gstatic.c
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (9)

Linked from (2)