threesixtyinventories.co.uk

.uk crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 5426 ms crawled 2026-05-16

GB · 159.65.26.218 · AS14061 DigitalOcean, LLC

Reputation 100/100

sector other type homepage

HTML metadata

Title: Three Sixty Inventories
Language: en

Technology

Server: nginx

Analytics

Google Tag Manager

Cookie consent

OneTrust

Fonts

Google Fonts

Third-party hosts loaded (5)

cdn.jsdelivr.net×2
cdn-ukwest.onetrust.com×1
fonts.googleapis.com×1
js.hsforms.net×1
www.googletagmanager.com×1

Contact

Email

Phone

08081349983

Registration

Registrar

123-Reg Limited t/a 123-reg

Created

2022-01-27

Expires

2027-01-27 250 days left

Updated

2025-12-22

Name servers

ns33.domaincontrol.com.
ns34.domaincontrol.com.

DNS records live

NS

ns33.domaincontrol.com
ns34.domaincontrol.com

MX

0 threesixtyinventories-co-uk.mail.protection.outlook.com

TXT

Show 4 TXT records

qqa2l3k380rspno474pmgehhin
q99fmse6k4000gt8ir5bht42ig
8gb1mrluj4o41eicetodieulio
vhq2hrlg2lopqi65jf6t4crdcs

Email authentication strong

SPF

v=spf1 include:_u.threesixtyinventories.co.uk._spf.smart.ondmarc.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:2ba62bc7@inbox.ondmarc.com,mailto:24c065a4800f375@rep.dmarcanalyzer.com; ruf=mailto:2ba62bc7@inbox.ondmarc.com,mailto:24c065a4800f375@for.dmarcanalyzer.com; adkim=r; aspf=r; fo=1; rf=afrf; ri=3600

policy: reject (enforced) · sp=reject

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0xlKUeVsV0KDRClv1uAt9qQwN+YXcPqRfztSD5/BiROZAGmKy1LQmcPi98cPfyzLpDZTu15+wRt0i…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-12-22 to 2027-01-23

Expires in 247 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.threesixtyinventories.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: sameorigin
permissions-policy: geolocation=(self), microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.hsforms.com *.hubspot.com inform.dataloft.co.uk googleads.g.doubleclick.net *.vimeo.com youtu.be *.clarity.ms cdn.cookielaw.org *.hsforms.net *.hs-scripts.com *.hs-banner.com *.hs-analytics.net *.hsadspixel.net *.hubapi.com *.googleapis.com *.google.com *.onetrust.com *.google-analytics.com *.googletagmanager.com *.amazonaws.com api.mapbox.com *.jsdelivr.net *.gstatic.com *.gravatar.com *.postcodeanywhere.co.uk *.cloudflare.com *.youtube.com unpkg.com moneypennychat.appspot.com connect.facebook.net stats.g.doubleclick.net td.doubleclick.net 'unsafe-eval' 'unsafe-inline'; img-src 'self' * data: 'unsafe-inline'; font-src 'self' data: *.gstatic.com storage.googleapis.com; frame-ancestors 'self' *.somilestone.com
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (1)

teamtailor.com×2

Linked from (1)

lrg.co.uk×2