indexo.dev

purchasingiq.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-10 · ok HTTP/1.1 200 1360 ms crawled 2026-05-14

US · 3.229.43.46 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Login | PurchasingIQ
Language
en
Generator
Drupal 10 (https://www.drupal.org)

Technology

Server
nginx
CMS
Drupal
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (4)

  • cdn.cookielaw.org×1
  • cdn.jsdelivr.net×1
  • static.addtoany.com×1
  • www.googletagmanager.com×1

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2019-03-13
Expires
2027-03-13 297 days left
Updated
2026-03-09
Name servers
  • dns1.cscdns.net
  • dns2.cscdns.net

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 10 mxa-00009201.gslb.pphosted.com
  • 20 mxb-00009201.gslb.pphosted.com
TXT
Show 4 TXT records
  • 4v9z82s1h83tf9zm9r0stqnlnx4qbfv0
  • _h9vfboj2ut1rr4li3gyzn8pbcmqx7q4
  • cc9m0t8vywgv94t5qqv3sz8h0ln2gr86
  • MS=ms60346357

Email authentication strong

SPF
v=spf1 include:sodexo.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2026-02-25 to 2026-09-12
Expires in 115 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://purchasingiq.com/account/login?destination=node/7106

present
  • strict-transport-security
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • missing Content Security Policy
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
strict-transport-security
max-age=1000; includeSubDomains
content-security-policy-report-only
default-src 'self' *.purchasingiq.com 'unsafe-eval' 'unsafe-inline' data: blob: *.addtoany.com *.powerbi.com *.analysis.windows.net *.powerbi.com https://cdn.cookielaw.org/; script-src 'self' *.purchasingiq.com 'unsafe-eval' 'unsafe-inline' data: blob: *.googletagmanager.com *.jsdelivr.net *.addtoany.com *.newrelic.com *.powerapps.com *.powerbi.com *.datatables.net *.lift.acquia.com *.doubleclick.net *.aspnetcdn.com *.jquery.com https://cdn.cookielaw.org/ *.visualwebsiteoptimizer.com; style-src 'self' *.purchasingiq.com 'unsafe-inline' *.googleapis.com *.powerapps.com *.dxpr.com; img-src 'self' *.purchasingiq.com data: blob: *.widen.net *.powerapps.com *.google.com *.google.co.in *.visualwebsiteoptimizer.com https://cdn.cookielaw.org/; media-src 'self' *.purchasingiq.com data: blob: *.widen.net; frame-src 'self' *.purchasingiq.com data: *.powerbi.com *.googletagmanager.com *.addtoany.com *.doubleclick.net *.widen.net; frame-ancestors 'self' *.purchasingiq.com data: *.powerbi.com *.goog

Linked from (1)