indexo.dev

tinfish-creative.co.uk

.uk crawl

First seen 2026-06-02 · Last seen 2026-06-04 · ok HTTP/1.1 200 325 ms crawled 2026-06-02

DE · 217.160.0.65 · AS8560 IONOS SE

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Tin Fish Creative | Branding, Design, Digital and Web Specialists
Description
Tin Fish Creative Communications is a creative marketing agency who specialise in Web Design & Digital Development, Graphic Design, Business Branding, Packaging, Event Management and Marketing.
Language
en
Canonical
https://www.tinfish-creative.co.uk

Open Graph

url
https://www.tinfish-creative.co.uk
title
Tin Fish Creative | Branding, Design, Digital and Web Specialists
locale
en-GB
site name
Tin Fish Creative
description
Tin Fish Creative Communications is a creative marketing agency who specialise in Web Design & Digital Development, Graphic Design, Business Branding, Packaging, Event Management and Marketing.

Technology

Server
Apache
jQuery
3.6.0
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×2
  • ajax.googleapis.com×1
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1057.ui-dns.biz
  • ns1057.ui-dns.com
  • ns1057.ui-dns.de
  • ns1057.ui-dns.org
MX
  • 10 mx00.ionos.co.uk
  • 10 mx01.ionos.co.uk
TXT
  • ojs6eirf5ih2cf1kdvmmh67i5r

Email authentication partial

SPF
v=spf1 include:_spf.perfora.net include:_spf-eu.ionos.com include:_spf.kundenserver.de ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k1: v=DKIM1;t=s;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCqQcWX3mZxC2NBdsJOqCgxGRrUasc0D5W2aXOEtwjDZRcpVLddJOxU2hq3DE7gf0HYltQkfnlZ4dFZWc5CNPT8X…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-01-14 to 2027-01-29
Expires in 232 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.tinfish-creative.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
content-security-policy
img-src * data:; default-src 'self' 'unsafe-inline' *.googleapis.com *.google-analytics.com *.google.com *.gstatic.com *.twitter.com *.twimg.com *.youtube.com *.googletagmanager.com *.facebook.net *.facebook.com *.elfsight.com *.tripadvisor.co.uk *.tripadvisor.com *.tacdn.com chimpstatic.com *.jscache.com *.vimeo.com;
strict-transport-security
max-age=15768000

Links to (2)

Linked from (2)

Use this data via API

Everything on this page for tinfish-creative.co.uk is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/tinfish-creative.co.uk" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →