theabi.org.uk

.uk crawl

First seen 2026-04-30 · Last seen 2026-05-08 · ok HTTP/1.1 200 4442 ms crawled 2026-05-08

GB · 45.145.100.201 · AS61323 Ans Academy Limited

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: The Association of British Investigators
Description: Private investigation is unregulated, and plagued by rogue operators. The Association of British Investigators is a standard bearer and a voice for change.
Language: en
Canonical: https://www.theabi.org.uk

Open Graph

url: https://www.theabi.org.uk
title: The Association of British Investigators
locale: en_GB
site name: The Association of British Investigators
description: Private investigation is unregulated, and plagued by rogue operators. The Association of British Investigators is a standard bearer and a voice for change.

Technology

Server: nginx

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Contact

Email

Phone

020 8191 7500

Address

Brentano Suite, Catalyst House, Centennial Park, WD6 3SY, Elstree, Hertfordshire

Registration

Registrar

Team Blue Internet Services UK Limited t/a Team Blue Internet Services Limited t/a names.co.uk

Created

2001-11-09

Expires

2027-11-09 538 days left

Updated

2024-09-25

Name servers

ns0.phase8.net.
ns1.phase8.net.
ns2.phase8.net.

DNS records live

NS

ns0.phase8.net
ns1.phase8.net
ns2.phase8.net

MX

10 mx1.ukservers.net

Email authentication partial

SPF

v=spf1 mx include:spf.ukservers.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

R13

from 2026-04-11 to 2026-07-10

Expires in 51 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.theabi.org.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: base-uri 'self';connect-src 'self' https://cdn.plyr.io https://noembed.com https://*.hotjar.io https://*.hotjar.com wss://*.hotjar.com https://*.google-analytics.com https://*.googleapis.com https://*.linkedin.com https://*.facebook.com https://*.twitter.com;default-src 'self';form-action 'self' https://www.paypal.com;img-src * data:;media-src 'self';object-src 'none';script-src 'self' 'unsafe-eval' 'nonce-7NuXubxWfpgI76VRQtPTY4dUrytWegQV' https://cdn.plyr.io https://www.youtube.com https://*.hotjar.io https://*.hotjar.com https://*.google.com https://*.gstatic.com https://*.googleapis.com https://*.googletagmanager.com https://*.google-analytics.com;style-src 'self' 'unsafe-inline' https://cdn.plyr.io https://fonts.googleapis.com;frame-src 'self' https://app.smartsheet.com https://www.youtube.com https://www.youtube-nocookie.com https://publish.smartsheet.com/ https://*.googletagmanager.com https://*.google.com;font-src 'self' data: https://fonts.gstatic.com
strict-transport-security: max-age=31536000;

Links to (5)

Linked from (1)

javelincloud.com×1