indexo.dev

qtrade.ca

.ca user

First seen 2026-05-20 · Last seen 2026-05-20 · ok HTTP/1.1 200 1985 ms crawled 2026-06-03

US · 199.83.132.205 · AS19551 Incapsula Inc

Reputation 94/100 dmarc monitor-only

sector finance type homepage

HTML metadata

Title
Invest with Qtrade Direct Investing | Qtrade
Description
Qtrade Direct Investing delivers everything you need to manage your investments and take advantage of market opportunities. Invest with Qtrade today, for a better online trading experience.
Language
en
Canonical
https://www.qtrade.ca/en/investor.html
Translations
  • en
  • fr

Open Graph

url
https://www.qtrade.ca/en/investor.html
title
Invest with Qtrade Direct Investing
description
Qtrade Direct Investing delivers everything you need to manage your investments and take advantage of market opportunities. Invest with Qtrade today, for a better online trading experience.

Technology

Server
Apache
jQuery
3.7.1
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • www.qtrade.ca×46
  • cdn.jsdelivr.net×3
  • code.jquery.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
Rebel.ca Corp.
Created
2000-09-22
Expires
2027-05-17 340 days left
Updated
2026-05-17
Name servers
  • ns1.dnsmadeeasy.org
  • ns2.dnsmadeeasy.org
  • ns3.dnsmadeeasy.org
  • ns4.dnsmadeeasy.org

DNS records live

NS
  • ns0.dnsmadeeasy.org
  • ns1.dnsmadeeasy.org
  • ns2.dnsmadeeasy.org
  • ns3.dnsmadeeasy.org
  • ns4.dnsmadeeasy.org
MX
  • 10 qtrade-ca.mail.protection.outlook.com
TXT
  • knowbe4-site-verification=048cd779afe42f40a999d378b08da171
  • +1llD33R4XtD0uW5VspYzuPAqRUOPlNR3d2ShhSjJMl9jqtzFckLtr0vxlpY60oPY8LmT5aIhFr6l+NJ8l4plg==
Verified for
  • GlobalSign
  • Google
  • Meta

Email authentication partial

SPF
v=spf1 ip4:172.255.50.236/32 ip4:172.255.50.237/32 ip4:172.255.55.4/32 ip4:66.38.129.64/26 ip4:64.254.144.215/32 include:spf.protection.outlook.com include:spf-dc.doxim.com -all
strict (-all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:dmarcreports@aviso.ca,mailto:dmarc_rua@aviso.ca; ruf=mailto:dmarcreports@aviso.ca,mailto:dmarc_ruf@aviso.ca
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCXmHOg9lv4Ucxz6dCAIBrv/N0TNNcQjyeI4Nab9RRWe3uHtoXjPaPHXUXMOdJS1/dhsfYJBhdmCXmXVTJsVN…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0U3BSkF7xKQYOw6rTJSNLd3pxQcELQz/0w7pa5aZiPXj07z4ukvG5OYbemwQ0yWuqz4w90/8U6KRZ…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-12-18 to 2027-01-19
Expires in 222 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.qtrade.ca/en/investor.html

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-eval' 'unsafe-hashes' 'unsafe-inline' data: blob: i.vimeocdn.com code.jquery.com *.googletagmanager.com rules.quantcount.com vimeo.com app.launchdarkly.com cdn.walkme.com *.googleadservices.com www.redditstatic.com *.gstatic.com www.google.com alb.reddit.com pixel-config.reddit.com www.googletagmanager.com cdn.cookielaw.org *.vimeo.com maxcdn.bootstrapcdn.com cdnjs.cloudflare.com launch-workflow.trulioo.com markets.qtrade.ca www.google.ca pixel.quantcount.com cdn.mouseflow.com ca-central.id.miteksystems.com www.qtrade.ca app.fintelconnect.com payments.flinksapp.com *.morningstar.com www.google-analytics.com use.fontawesome.com *.doubleclick.net dashboard.engagefront.com ws1.postescanada-canadapost.ca screener.qtrade.experoconnected.com *.qualtrics.com qtrade.ca bat.bing.com events.launchdarkly.com www.morningstar.co.uk *.pure.cloud site.tradingcentral.com www.youtube.com *.facebook.com engagefront.theweathernetwork.com analytics.google.com wss://webmessaging.
strict-transport-security
max-age=311040000; includeSubDomains

Links to (7)

Use this data via API

Everything on this page for qtrade.ca is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/qtrade.ca" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →