scorito.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Gatsby
- Analytics
-
- Cloudflare Insights
- Ads
-
- Google Ads (DoubleClick)
- Cookie consent
-
- Termly
Third-party hosts loaded (3)
- app.termly.io×1
- securepubads.g.doubleclick.net×1
- static.cloudflareinsights.com×1
Registration
- Registrar
- Hosting Concepts B.V. d/b/a Registrar.eu
- Created
- 2010-08-23
- Expires
- 2027-08-23 447 days left
- Updated
- 2025-11-27
- Name servers
-
- brenda.ns.cloudflare.com
- dilbert.ns.cloudflare.com
DNS records live
- NS
-
- brenda.ns.cloudflare.com
- dilbert.ns.cloudflare.com
- MX
-
- 0 scorito-com.mail.protection.outlook.com
- TXT
-
atlassian-sending-domain-verification=6ec64304-34ec-4b3f-9b02-3d76331a416f
- Verified for
-
- Atlassian
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:sendgrid.net ip4:91.212.215.0/24 ip4:185.226.136.241 ip4:185.226.137.252 include:_spf.twikey.com ip4:50.31.44.99 ip4:185.80.235.193 ip4:141.98.3.95 -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; adkim=r; aspf=r; rua=mailto:rua@scorito.com;policy: quarantine - DKIM
-
Show 5 DKIM selectors
- default:
v=DKIM1; g=*; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCLaX7Fx77IJkC0SdOxy29jRVW7C/jt5hUnxFmCnhZYxwbj6D3eSZAkm6eDov6XMCJdM/OfgYnWhjWB… - selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQChvdJjeQhp0KOrz/l9u82gHAAhAt9KDBDs9wROEcW11HE61nXkNL3AoV4YJNlgE2Fetw9o9qtLftFvl6gej5… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eoSL0Rxo5CGys5ulNHK8Es+urO1sV87Xq5k0nZiswfTuCyJ/JatkrnoKDqdRPC/ao+B2+0ybrd4tps9xH… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3zB8HWbTSkplA34ponO4gGiW/L0GA2jWfcR4yNLxUEl5F+26IgP4mOxKyBniVFuLn1riIXDnEQp8dA9EO… - smtpapi:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed - default:
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 258 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
fullscreen=("https://scorito.com" "https://*.scorito.com" "https://www.youtube.com"),geolocation=("https://scorito.com" "https://*.scorito.com")- x-content-type-options
nosniff- content-security-policy
default-src 'self' wss: https: 'unsafe-inline' 'unsafe-eval'; img-src * data: blob:; frame-ancestors 'self' https://*.scorito.com;- strict-transport-security
max-age=31536000; includeSubDomains- content-security-policy-report-only
default-src 'self' *.scorito.com; frame-ancestors 'self' *.scorito.com; form-action 'self' *.scorito.com betalen.rabobank.nl *.wlp-acs.com *.arcot.com *.americanexpress.com *.paypal.com; script-src-elem 'unsafe-inline' blob: *.scorito.com *.cdn.adyen.com static.cloudflareinsights.com cdnjs.cloudflare.com *.g.doubleclick.net www.google-analytics.com www.googletagmanager.com https://*.googlesyndication.com apis.google.com ajax.googleapis.com *.adtrafficquality.google script.hotjar.com static.hotjar.com *.lfeeder.com https://cdn.leadinfo.net snap.licdn.com js-agent.newrelic.com bam-cell.nr-data.net bam.nr-data.net live.steam.eu.com app.termly.io sdk.privacy-center.org platform.twitter.com https://www.youtube.com; script-src 'unsafe-inline' 'unsafe-eval' 'unsafe-hashes' *.scorito.com static.cloudflareinsights.com cdnjs.cloudflare.com https://*.gleap.io www.googletagmanager.com *.g.doubleclick.net www.google-analytics.com *.adtrafficquality.google https://static.hotjar.com https://script.ho