indexo.dev

svelt.it

.it crawl

First seen 2026-05-18 · Last seen 2026-05-24 · ok HTTP/1.1 200 21804 ms crawled 2026-05-24

NL · 80.69.89.160 · AS20857 Signet B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Professional scaffolds, ladders, hand trucks and lifters
Description
Svelt.it is the online store for aluminium and steel scaffolds and ladders, platforms and lifters that are ideal for construction and DIY. Browse the catalogue!
Language
en

Open Graph

url
https://www.svelt.it/en
title
Professional scaffolds, ladders, hand trucks and lifters
description
Svelt.it is the online store for aluminium and steel scaffolds and ladders, platforms and lifters that are ideal for construction and DIY. Browse the catalogue!

Technology

Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • www.googletagmanager.com×2
  • www.facebook.com×1

Contact

Phone

DNS records live

NS
  • ns1.register.it
  • ns2.register.it
MX
  • 10 fraiser.sr1.it
  • 11 vala.sr1.cloud
Verified for
  • Brevo

Email authentication partial

SPF
v=spf1 ip4:94.237.97.38 ip4:109.233.221.194 ip4:79.135.48.114 ip4:80.91.53.27 ip4:80.91.53.25 include:spf.sendinblue.com mx ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@ritail.hk; aspf=s;
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOd07YMkSYfiIxEzyAACqVp0p02N/zqu7wluqUmtgy4JE3oZXETZolsrn9yyIJFfdsU3VdsYCThC3xARuvmpQpwIYBk…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA EV R36
from 2025-11-04 to 2026-11-14
Expires in 166 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.svelt.it/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
microphone=(), camera=(), payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self';script-src 'self' 'nonce-L3XWDw2eNQ4mVkxF8lBQ/OXX' 'unsafe-eval' www.googletagmanager.com connect.facebook.net widgets.rr.skeepers.io cdn.connectif.cloud www.recaptcha.net;style-src 'self' 'unsafe-inline' fonts.googleapis.com;img-src 'self' data: blob: www.googletagmanager.com i.vimeocdn.com www.facebook.com maps.gstatic.com maps.googleapis.com cdn.connectif.cloud i.ytimg.com;font-src 'self' data: fonts.gstatic.com;connect-src 'self' *;child-src 'self' www.googletagmanager.com www.youtube.com www.youtube-nocookie.com player.vimeo.com widgets.rr.skeepers.io www.recaptcha.net;frame-ancestors 'self';upgrade-insecure-requests
strict-transport-security
max-age=31536000; includeSubDomains

Links to (1)

Linked from (2)