indexo.dev

smartfit.es

.es crawl

First seen 2026-04-23 · Last seen 2026-05-14 · ok HTTP/1.1 200 4476 ms crawled 2026-05-17

US · 172.67.148.40 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
SMARTFIT – Your Wellness Team
Language
es
Generator
WordPress 6.9.4
Canonical
https://smartfit.es/
Feeds

Technology

CDN
Cloudflare
CMS
WordPress
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×2
  • gmpg.org×1
  • www.facebook.com×1

Social

DNS records live

NS
  • adam.ns.cloudflare.com
  • nia.ns.cloudflare.com
MX
  • 0 smartfit-es.mail.protection.outlook.com
TXT
  • MS=ms95674993
  • Sendinblue-code:63fc4b71dcc5d4cf6400d78f53d9bdea

Email authentication partial

SPF
v=spf1 ip4:217.148.137.65 include:spf.profesionalhosting.com include:spf.protection.outlook.com include:_spf.perfora.net include:spf.sendinblue.com -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400
policy: none (monitoring only) · sp=none
DKIM
  • default: v=DKIM1; p=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+s0bet3uPxe5sWMMbwJvIi37dnyC2rM5QKjh88b1M2K3wXc9CE7orJRk87I6lL1c0BBWToFvj8wIZN0e7…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

WE1
from 2026-04-16 to 2026-07-15
Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://smartfit.es/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (7)

Linked from (1)