indexo.dev

thalgo.co.uk

.uk crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 660 ms crawled 2026-06-02

FR · 20.74.74.105 · AS8075 Microsoft Corporation

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Thalgo La Beauté Marine, products and treatments, beauty salons and thalasso spa
Language
en
Generator
Alpow!
Canonical
https://www.thalgo.co.uk/
Translations
  • en

Open Graph

url
https://www.thalgo.co.uk/
title
Thalgo La Beauté Marine, products and treatments, beauty salons and thalasso spa

Technology

Server
nginx
CMS
Joomla
jQuery
1.7.2 known XSS (<3.5)
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • cdn.scalapay.com×2
  • cdnjs.cloudflare.com×2
  • fonts.googleapis.com×1
  • widgets.rr.skeepers.io×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • ns1.netnames.net
  • ns2.netnames.net
  • ns5.netnames.net
  • ns6.netnames.net
MX
  • 5 thalgouk.in.tmes.trendmicro.eu
TXT
  • mc5mjq3kk5wxnqtbs2jwzps6rxcw5m66
  • tmes=215d264cbc6ccc5af452202264f95bb3
  • 16y2z3tywqd66w4zr8vyrfbm65lqyll7
Verified for
  • Brevo
  • Microsoft 365

Email authentication partial

SPF
v=spf1 ip4:20.111.25.58 ip4:20.199.108.178 ip4:20.111.29.138 ip4:20.199.107.217 ip4:20.111.51.158 a mx include:spf.tmes.trendmicro.com include:spf.sendinblue.com mx ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRtPEbBbQ45F4ZTdQj1E08H7WgsPWMUa5e1/bt/fBdDlNCIrmnUv8bN6yutQWb77GGFltg1dFEWx+6fr4C…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCdk64dLJzX8bQnD16oV/FWrRWh6KGXH3XOyNarFwtg8deOuIuOgqA+PHe39VqmsUyO7OrTgNhqJtgAP6Jt1l9hbl…
selectors probed

Certificate (current)

E7
from 2026-05-09 to 2026-08-07
Expires in 66 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.thalgo.co.uk/

present
  • x-frame-options
findings
  • missing HSTS
  • missing Content Security Policy
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN

Links to (10)

Linked from (3)