qross.no

.no crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 1091 ms crawled 2026-05-30

NO · 104.37.38.102 · AS51468 One.com A/S

Reputation 89/100 weak security headers dmarc partial coverage

Classifying

HTML metadata

Title: Vi bygger din kompetanse | Qross Kurssenter
Description: Velg blant over 200 kurs og kurspakker – eller få et spesialtilpasset opplegg. Kurs kan gjennomføres i våre lokaler i Oslo, online i sanntid med instruktør, som bedriftsinterne kurs i hele landet.
Language: nb
Canonical: https://www.qross.no

Open Graph

url: https://www.qross.no
title: Vi bygger din kompetanse | Qross Kurssenter
description: Velg blant over 200 kurs og kurspakker – eller få et spesialtilpasset opplegg. Kurs kan gjennomføres i våre lokaler i Oslo, online i sanntid med instruktør, som bedriftsinterne kurs i hele landet.

Technology

Server: Apache
PHP: 8.3.31 security-only
Stack: PHP

Fonts

Adobe Fonts

Third-party hosts loaded (4)

use.typekit.net×2
kit.fontawesome.com×1
p.typekit.net×1
policy.app.cookieinformation.com×1

Social

Contact

Email

Phone

22070090

DNS records live

NS

domain1.telenor.net
domain2.telenor.net

MX

10 qross-no.mail.protection.outlook.com

TXT

fa12d9a1-b4a3-425b-9b65-74380a9d4d9b
85129e4e-3314-469a-b0a2-0bed2e2f31e1

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:spf.inbusiness.no include:spf.mandrillapp.com include:_custspf.one.com include:tornado.email ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; pct=25; rua=mailto:wrmdqn2j@ag.eu.dmarcian.com;

policy: quarantine · pct=25

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

from 2026-05-12 to 2026-08-10

Expires in 70 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.qross.no/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://code.jquery.com https://cdn.jsdelivr.net https://unpkg.com https://kit.fontawesome.com https://ka-f.fontawesome.com https://ka-p.fontawesome.com https://ka-c.fontawesome.com https://www.youtube.com https://www.youtube-nocookie.com https://static.zdassets.com https://*.zdassets.com https://*.zendesk.com https://*.zopim.com https://*.cookieinformation.com https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://stats.g.doubleclick.net https://pagead2.googlesyndication.com https://bat.bing.com https://bat.bing.net https://*.clarity.ms; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fastly.jsdelivr.net https://unpkg.com https://static.zdassets.com https://*.zdassets.com https://*.zendesk.com https://*.cookieinformation.com https://www.googletagmanager.com https://use.typekit.net https://p.typekit.net; img-src 'self' data: https://i.ytimg.com https://ytimg.co

Links to (6)

Linked from (1)

kommunikasjon.no×1