thermal-grizzly.com
thermal-grizzly.com
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (1)
- sibforms.com×2
Social
Registration
- Registrar
- Cronon GmbH
- Created
- 2013-10-22
- Expires
- 2026-10-22 154 days left
- Updated
- 2025-10-23
- Name servers
-
- docks01.rzone.de
- shades16.rzone.de
DNS records
Email authentication strong
- SPF
-
v=spf1 redirect=_spf.strato.comno all qualifier - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc-reports@thermal-grizzly.com; ruf=mailto:dmarc-failures@thermal-grizzly.com; fo=1; pct=100policy: quarantine - DKIM
-
- mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed - mail:
Certificate (current)
Thawte TLS RSA CA G1
Expires in 148 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin- x-frame-options
deny, SAMEORIGIN- permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(self 'https://www.paypal.com'), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), hid=(), idle-detection=(), interest-cohort=()- x-content-type-options
nosniff, nosniff- content-security-policy
default-src 'self' *.usercentrics.eu; connect-src 'self' yoast.com *.discord.com *.discordapp.com *.google-analytics.com *.googlesyndication.com *.hubspot.com *.hsforms.com *.hscollectedforms.net *.oribi.io *.usercentrics.eu *.nelioabtesting.com *.google.com *.google.de *.facebook.com *.lfeeder.com *.doubleclick.net https://www.paypal.com https://*.paypal.com https://sibforms.com *.youtube.com *.youtube-nocookie.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google.com google.com *.googletagmanager.com *.google-analytics.com *.gstatic.com gstatic.com *.hsforms.net *.hs-scripts.com *.hsleadflows.net *.hubspot.com *.hsappstatic.net *.hs-banner.com *.hscollectedforms.net *.hs-analytics.net *.licdn.com *.usercentrics.eu *.doubleclick.net *.lfeeder.com *.discord.com *.facebook.net *.licdn.net https://www.paypal.com https://*.paypalobjects.com https://sibforms.com; style-src 'self' 'unsafe-inline' 'unsafe-eval' *.thermal-grizzly.com *.gstatic.com gstatic.com *.hubspot.com *.hsappstat- strict-transport-security
max-age=31536000; includeSubDomains, max-age=31536000; includeSubDomains; preload
Links to (6)
- facebook.com×2
- instagram.com×2
- linkedin.com×2
- reddit.com×2
- tiktok.com×2
- youtube.com×2