practicetoolkit.co.uk

.uk crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 4218 ms crawled 2026-05-19

US · 108.156.22.6 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector health type app saas

HTML metadata

Title: Practice Toolkit
Description: Practice Toolkit is a customisable patient recall software that reduces admin effort, streamlines recalls, and optimises appointments, all in one place.
Language: en
Canonical: https://www.practicetoolkit.co.uk

Technology

CDN: Amazon CloudFront
Server: AmazonS3
CMS: Gatsby

Fonts

Google Fonts

Social widgets

Vimeo Embed

Third-party hosts loaded (4)

fonts.googleapis.com×2
cdn.jsdelivr.net×1
fonts.gstatic.com×1
player.vimeo.com×1

Registration

Registrar

Ionos SE

Created

2024-06-06

Expires

2026-06-06 16 days left

Updated

2025-06-05

Name servers

ns-1076.awsdns-06.org.
ns-1782.awsdns-30.co.uk.
ns-495.awsdns-61.com.
ns-766.awsdns-31.net.

DNS records live

NS

ns-1076.awsdns-06.org
ns-1782.awsdns-30.co.uk
ns-495.awsdns-61.com
ns-766.awsdns-31.net

MX

0 practicetoolkit-co-uk.mail.protection.outlook.com

TXT

v=verifydomain MS=3937985

Verified for

Apple
Google

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:146755297.spf10.hubspotemail.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; sp=none; rua=mailto:d4da4501@in.mailhardener.com; pct=100

policy: none (monitoring only) · sp=none

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ4xG6/tqDjSh+uCWHZPi8LLl7g2nfURSxfg2ENByMmKsD8DLTeP2A3XGk8oPaDytQSW4eodTaZQRl…

selectors probed

Certificate (current)

Amazon RSA 2048 M03

from 2025-07-21 to 2026-08-20

Expires in 91 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.practicetoolkit.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://js.intercomcdn.com https://ph.practicetoolkit.co.uk https://cdn.jsdelivr.net https://widget.intercom.io; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.jsdelivr.net https://js.intercomcdn.com; img-src 'self' data: blob: https:; font-src 'self' https://fonts.gstatic.com https://fonts.intercomcdn.com; connect-src 'self' https://ph.practicetoolkit.co.uk https://api-iam.intercom.io wss://nexus-websocket-a.intercom.io ; frame-src 'self' https://intercom-sheets.com https://player.vimeo.com; worker-src 'self' blob:;
strict-transport-security: max-age=31536000; includeSubDomains

Linked from (1)

jerbob.me×4