refari.co
refari.co
HTML metadata
Technology
- Server
- LiteSpeed
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Ads
-
- Meta Pixel
- Fonts
-
- Google Fonts
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (25)
- fonts.gstatic.com×19
- www.guidejar.com×7
- widgets.revue.us×4
- widgets.thereviewsplace.com×4
- www.google.com×4
- fonts.googleapis.com×3
- maps.googleapis.com×2
- maps.gstatic.com×2
- www.googletagmanager.com×2
- analytics.ahrefs.com×1
- cdn.gravitec.net×1
- cdn.jsdelivr.net×1
- connect.facebook.net×1
- gmpg.org×1
- i.ytimg.com×1
- ipapi.co×1
- ipinfo.io×1
- js.stripe.com×1
- m.stripe.network×1
- maps.google.com×1
- player.vimeo.com×1
- s.w.org×1
- www.gstatic.com×1
- www.youtube.com×1
- yt3.ggpht.com×1
Social
Contact
- Phone
- Address
- Level 2/11 York St, 2000, Sydney, NSW, AU
DNS records live
- NS
-
- ns-136.awsdns-17.com
- ns-1409.awsdns-48.org
- ns-2044.awsdns-63.co.uk
- ns-544.awsdns-04.net
- MX
-
- 1 mx1.smtp.goog
- 10 mx3.smtp.goog
- 15 mx4.smtp.goog
- 5 mx2.smtp.goog
- Verified for
-
- Meta
Email authentication strong
- SPF
-
v=spf1 +a:servers.recruitmentweb.site include:3903663.spf06.hubspotemail.net include:_spf1.mailgun.org include:_spf2.mailgun.org include:_spf.eu.mailgun.org include:_spf.google.com include:servers.mcsv.net -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:73ddac93db4c.a@dmarcinput.com,mailto:c8945de4@in.mailhardener.com,mailto:developer@refari.co; ruf=mailto:73ddac93db4c.f@dmarcinput.com,mailto:c8945de4@in.mailhardener.com,mailto:developer@refari.co; fo=1policy: reject (enforced) - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7aJgKX1K1U34KrMHoxKxMkOqtnZQ/HPwsWzyzfAnRWC6EodPdikGgOk5TZiT9aqc8w6dKn6KxhLhlp… - google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDhxlEh73qQSavjkFpUmTWwJoqoPSvKdxegMMEMdqoeRD4jjxpNIRbV4nRwVG6SY9/IIEtb8p/vvdkO5ocg0i… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - default:
Certificate (current)
R12
Expires in 60 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP uses wildcard sources
- missing frame protection
Header values
- referrer-policy
strict-origin-when-cross-origin- permissions-policy
midi=(),publickey-credentials-get=()- x-content-type-options
nosniff- content-security-policy
connect-src 'self' *.elementor.com cloudflareinsights.com www.google.com *.freshchat.com *.freshdesk.com *.freshworks.com *.analytics.google.com *.google-analytics.com *.googletagmanager.com *.google.com *.googleapis.com *.gstatic.com *.gravityforms.com www.loom.com *.quic.cloud *.sucuri.net *.trustpilot.com *.vimeo.com *.wordfence.com gravatar.com api-js.mixpanel.com api.mixpanel.com ipinfo.io api-eu.mixpanel.com api.stripe.com checkout.stripe.com *.firebaseio.com firebase.googleapis.com m.stripe.com firebaseinstallations.googleapis.com analytics.ahrefs.com api.userway.org cdn.userway.org app.truconversion.com cdn.truconversion.com io.truconversion.com api.gravitec.media api.gravitec.net cdn.gravitec.net uapi.gravitec.net api.thereviewsplace.com w.revue.us www.guidejar.com cdn.refari.co api.refari.co widget.refari.co cdn.plyr.io cdn.jsdelivr.net; font-src 'self' data: *.elementor.com cdnjs.cloudflare.com ka-f.fontawesome.com *.freshdesk.com fonts.gstatic.com cdn.jsdelivr.net *.quic.cl- strict-transport-security
max-age=31536000; includeSubDomains;
Links to (4)
- youtube.com×1
- x.com×1
- linkedin.com×1
- facebook.com×1