themay50k.com
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (9)
- dvtuw1sdeyetv.cloudfront.net×51
- d1mibgy72px3y3.cloudfront.net×44
- d2nqjh7h1uavry.cloudfront.net×12
- fonts.googleapis.com×4
- cdnjs.cloudflare.com×1
- maps.googleapis.com×1
- www.bugherd.com×1
- www.facebook.com×1
- www.googletagmanager.com×1
Social
Contact
Registration
- Registrar
- 123-Reg Limited
- Created
- 2019-02-07
- Expires
- 2031-02-07 1724 days left
- Updated
- 2025-12-09
- Name servers
-
- amy.ns.cloudflare.com
- clay.ns.cloudflare.com
DNS records live
- NS
-
- amy.ns.cloudflare.com
- clay.ns.cloudflare.com
- MX
-
- 0 themay50k-com.mail.protection.outlook.com
- TXT
-
MS=ms31026700facebook-domain-verification=fjosv3hl9e5lp3vajlvzv1jmrl0tzu
Email authentication partial
- SPF
-
v=spf1 ip4:109.232.63.27 ip4:109.232.63.28 include:eu.mailgun.org include:_spf.createsend.com include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 64 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src * blob: data: 'unsafe-inline' 'unsafe-eval'- strict-transport-security
max-age=31536000; includeSubDomains; preload
Links to (7)
- dmsg.de×2
- facebook.com×2
- funraisin.co×2
- instagram.com×2
- msif.org×2
- mssociety.org.uk×2
- twitter.com×2
Linked from (1)
- msif.org×2