suramexico.com
suramexico.com
HTML metadata
Social
Contact
Registration
- Registrar
- Wingu Networks, S.A. de C.V.
- Created
- 2011-12-23
- Expires
- 2026-12-23 217 days left
- Updated
- 2023-07-03
- Name servers
-
- ns3.suramexico.com.mx
- ns4.suramexico.com.mx
DNS records live
- NS
-
- ns3.suramexico.com
- ns4.suramexico.com
- MX
-
- 10 mail01.suramexico.com
- 10 mail02.suramexico.com
- 100 mail03.suramexico.com
- TXT
-
Show 6 TXT records
google-site-verification= EmrPV693xZ6Pv5FrTkJJOuIIl8W2j3G5SheJbwfhGz4cisco-ci-domain-verification=1bf2d9fd91b8a74b0cfaac6cf119c2d74d498064cbec28208374a30a8e660698Dynatrace-site-verification=473f5013-474b-45af-ab7b-7dcbb5c55a6f__7tn8v9o5q6aatipqid4q53oba5google-site-verification=p5YqP-zJnP7NRtwEQFh1A5IEqdLNNpyVGr6JXqWTMfA_rlvrdfjk81kcto9n2kns5qwygvaeta4_ev4a5odsb57riq6ed3zlksimj1fn8zdgoogle-site-verification=mBtLW26jZtTxloqJ--29lGhwCKr9_ociphGlFr6VR8c
Email authentication partial
- SPF
-
v=spf1 ip4:201.144.109.33 ip4:201.144.109.41 include:sendgrid.net include:spf.mandrillapp.com include:spf.protection.outlook.com include:ged.ipsos-interactive.com include:_spf.creativa.cl include:spf.mailjet.com include:spf.qb-feedback.com include:_pmta2.antevenio.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:dmarc-report@suramexico.com; ruf=mailto:dmarc-report@suramexico.com; fo=1policy: none (monitoring only) - DKIM
-
Show 5 DKIM selectors
- default:
v=DKIM1; k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDILz7+MGVud67qaG/gB8vm+182UzN9nmEIRLPs2rCA8g7vMR64R36xHm9kgnG9uHnleVrowiAuTeKAr0a3r12… - selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDb8MGMdeA9vFmkxi6rxwZt68cdYFaiWX999GOuiu6dLX1ONe3UsxMCYWC3ALv3Yj2LlbVADPOR01hcD/HvyO… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwO8OMjpxosnkB9M5vOK9E3udX8SdnXhtxPOLd7LK3nyoF1GB5FE0QdqRV720+/eOxwT6CuAU2HZbb5hmW0… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaWQSi39wuyCt4RIoIk1KzSi2IwO4XQsaswTZhaBSoHWQ+j3zF91GAe/vv4pRU8+ZtrugA1kPEjlNVapA0… - smtpapi:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed - default:
Certificate (current)
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 112 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- weak content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, ALLOW-FROM https://invierteyahorra.suramexico.com, ALLOW-FROM https://contrata.suramexico.com, ALLOW-FROM https://www.suramexico.com, ALLOW-FROM https://inversiones.suramexico.com, ALLOW-FROM https://invierteyahorra.suramexico.com, ALLOW-FROM https://contrata.suramexico.com, ALLOW-FROM https://www.suramexico.com, ALLOW-FROM https://inversiones.suramexico.com- x-content-type-options
nosniff, nosniff, nosniff- content-security-policy
default-src https: 'unsafe-eval' 'unsafe-inline'; object-src 'none'; connect-src *; img-src 'self' data: https:;, object-src *; plugin-types application/pdf; script-src * 'unsafe-inline' 'unsafe-eval' data:, object-src *; plugin-types application/pdf; script-src * 'unsafe-inline' 'unsafe-eval' data:- strict-transport-security
max-age=63072000; includeSubDomains; preload
Links to (10)
Linked from (1)
- sura.com×3