tamweelcom.org
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (1)
- pro.fontawesome.com×1
Social
Contact
- Phone
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2005-11-29
- Expires
- 2026-11-29 194 days left
- Updated
- 2024-07-21
- Name servers
-
- ns55.domaincontrol.com
- ns56.domaincontrol.com
DNS records live
- NS
-
- ns55.domaincontrol.com
- ns56.domaincontrol.com
- MX
-
- 0 tamweelcom-org.mail.protection.outlook.com
- TXT
-
cyberaware-verification=433dd2a9d3dc7d3bf52496ca5894905a91b4dd85
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; sp=reject; rua=mailto:ab2d3b2d@inbox.ondmarc.com,mailto:noc@Tamweelcom.org; ruf=mailto:ab2d3b2d@inbox.ondmarc.com,mailto:noc@Tamweelcom.org,mailto:int.fincert@cbj.gov.jo; adkim=r; aspf=r; fo=1; rf=afrf; ri=84600policy: quarantine · sp=reject - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDP2BEKfXuWjM8kJZUzUdHh/Lxx4WmlyI3B9Qc6nVaJL5GBZR/Su+otfaYvazKLyao9zLQ7Ih/nKdI… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqM6k5RPlWzOcM52BKQg+vBXAFxeMYrGovo2VmGSCSrMJPQqwM/VdGafg0U6dUfGzjGiGGLtv9YHDHl…
selectors probed - selector1:
Certificate (current)
Go Daddy Secure Certificate Authority - G2
Expires in 153 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), battery=(self), camera=(self), display-capture=(self), document-domain=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), layout-animations=(self), magnetometer=(self), microphone=(self), midi=(self), oversized-images=(self), payment=(self), picture-in-picture=(*), publickey-credentials-get=(self), sync-xhr=(self), usb=(self), wake-lock=(self), xr-spatial-tracking=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self'; connect-src 'self' *.google-analytics.com stats.g.doubleclick.net *.googleapis.com *.google.com www.google.com; font-src 'self' *.gstatic.com data: cdn.jsdelivr.net *.fontawesome.com; frame-src 'self' *.google.com menafn.com *.youtube-nocookie.com *.true-markets.net *.youtube.com *.googletagmanager.com www.googletagmanager.com; img-src 'self' data: *.google-analytics.com *.gstatic.com *.google.com *.googleapis.com i.ytimg.com *.google.jo *.facebook.com www.google.com *.google.com.eg *.google.com.jo ; manifest-src 'self'; object-src 'self'; prefetch-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googletagmanager.com *.google-analytics.com *.googleapis.com *.google.com *.gstatic.com *.jsdelivr.net *.facebook.net *.youtube.com *.googleadservices.com googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' *.googleapis.com *.jsdelivr.net *.fontawesome.com; media-src 'self'; form-action 'self' ; worker-src 'self'; child-src 'self'; frame-ancestors- strict-transport-security
max-age=15768000
Links to (17)
- umniah.com×2
- youtube.com×2
- zaincash.com×2
- apple.com×2
- arabiaweather.com×2
- eib.org×2
- facebook.com×2
- google.com×2
- huawei.com×2
- ifc.org×2
- instagram.com×2
- kinghusseinfoundation.org×2
- linkedin.com×2
- mepspay.com×2
- tanmeyahjo.com×2
- twitter.com×2
- fmo.nl×1