studygroup.com
HTML metadata
Technology
- CMS
- Next.js
- Analytics
-
- Google Tag Manager
- Fonts
-
- Adobe Fonts
Third-party hosts loaded (3)
- assets-us-01.kc-usercontent.com×18
- use.typekit.net×2
- www.googletagmanager.com×1
Social
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 1997-09-18
- Expires
- 2026-09-17 120 days left
- Updated
- 2025-09-18
- Name servers
-
- pdns05.domaincontrol.com
- pdns06.domaincontrol.com
DNS records live
- NS
-
- pdns05.domaincontrol.com
- pdns06.domaincontrol.com
- MX
-
- 10 mail3.us.studygroup.com
- 10 mail4.us.studygroup.com
- 20 mail.uk.studygroup.com
- 20 mail2.uk.studygroup.com
- TXT
-
Show 13 TXT records
formstack-domain-verification=86473ec96f4f5844618cb4fc1b2165edgoogle-site-verification=0ZUW3tk1v0gk-RCknaeyCgQNmCY1ZY6nVx8nHc27vPwatlassian-domain-verification=mZwu9/WEUUUWO/BRr9+kEUYyGih/cYh+TBzFue3T6x6KYpXEll7ercbqHiT7PfVoMS=5D995B1AF6F75E6586C5236D14E5A93FCEF4C3BDapple-domain-verification=XzxsxUeseSLAKfcZnotion_verify_3iRECvqQHzg3W4mM7yh0nUNa1VJuzexBZWkzNXrpmpTBoVKG3mBQMKp1Htk8Fy7gn2vgcdGT8TCCFWXPZXEMMH4R5OPF25WIKQAM34H03D4TLIbrowserstack-domain-verification=32853e23-3264-408a-a961-5fa7a88e266aamazonses:ZrE+mkRHhXcHBoLCRn29wbGU9Tln+X7rmrC08/oiT+w=7dyiLhPzlpCrKbeh1GmAiD0xj66qj1GgMndLbaFmZmp+RsB5Tpvs26CF1LNCkqDBwfxGoqIpjaRpU1Ju9WJqXg==SGD8xClAE1wJqmMKq0q9R6PHxARF0O9UmRoOa+B20IdTZmwwJAovQGCzIKomycML0hzIBbkkY7Gmhh66/SxFbw==B6KGLFSFO5C0TEWJKPKLIR9EQNKOCWOVFA6MP7SKZOOM_verify_99k87uMaQZCvjP90u-dRdA
Email authentication strong
- SPF
-
v=spf1 ip4:66.209.89.83 ip4:66.209.89.82 ip4:185.160.166.134 ip4:185.160.166.133 ip4:199.59.109.116 ip4:38.142.170.98 ip4:185.160.166.132 ip4:185.4.128.196 include:spf.mandrillapp.com include:_spf.salesforce.com include:spf.protection.outlook.com include:amazonses.com -allstrict (-all) - DMARC
-
v=DMARC1;p=quarantine;sp=reject;rua=mailto:dmarcreports@studygroup.com,mailto:8e48d592d0@rua.easydmarc.com;ruf=mailto:dmarcreports@studygroup.com,mailto:8e48d592d0@ruf.easydmarc.com;fo=1;policy: quarantine · sp=reject - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvYk4q0YwpdqJHo+klSH4pNMwLhOtye+pNB9VeRjqlEVs7lqp+Tbj7QCa/TLUdxCjytxIJMmZ/2V84q4Zk0w… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aR6J0oTSlYEVwNQxMaGu0oWRv8fD7N7fKNwkgf/OMKoN4ILSv1YudjrmYDNLkEvSid7/Uff1aRm4S… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - selector1:
Certificate (current)
Go Daddy Secure Certificate Authority - G2
Expires in 298 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self'; block-all-mixed-content; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://*.google-analytics.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://*.api.osano.com https://*.osano.com https://www.google.com/ccm; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.gstatic.com/recaptcha/ https://directform.studygroup.com https://*.google-analytics.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://*.api.osano.com https://*.osano.com https://directcase.studygroup.com https://www.recaptcha.net/recaptcha/ https://www.agencycloud-52.com/js/ https://sc.lfeeder.com https://www.youtube.com/iframe_api https://connect.facebook.net/en_US/fbevents.js https://connect.facebook.net/signals/config/ https://www.youtube.com/s/player/ https://googleads.g.doubleclick.net/; style-src 'self' 'unsafe-inline' https://p.typekit.net; style-src-elem 'self' 'unsafe-inl- strict-transport-security
max-age=31536000; includeSubDomains