indexo.dev

tractivesuspension.com

.com crawl

First seen 2026-05-02 · Last seen 2026-05-15 · ok HTTP/1.1 200 621 ms crawled 2026-05-08

US · 188.114.96.3 · AS13335 Cloudflare, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
TracTive Suspension
Language
nl

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • maps.googleapis.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
Key-Systems GmbH
Created
2010-05-24
Expires
2026-05-24 4 days left
Updated
2025-11-28
Name servers
  • hans.ns.cloudflare.com
  • selah.ns.cloudflare.com

DNS records live

NS
  • hans.ns.cloudflare.com
  • selah.ns.cloudflare.com
MX
  • 0 d340364.a.ess.de.barracudanetworks.com
  • 10 d340364.b.ess.de.barracudanetworks.com
  • 20 tractivesuspension-com.mail.protection.outlook.com
TXT
  • MS=ms74012542

Email authentication strong

SPF
v=spf1 a mx include:spf.protection.outlook.com include:spf.ess.de.barracudanetworks.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; fo=1; rua=mailto:rua+tractivesuspension.com@dmarc.barracudanetworks.com; ruf=mailto:ruf+tractivesuspension.com@dmarc.barracudanetworks.com
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Dlfpq9n5UkA252U3ipxMq6XZndTIWxZe5uxNx7zyyopAjaBNNjUkM+tUGarMkq85I1M8xcq0lh45f…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-03-16 to 2026-06-15
Expires in 26 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://tractivesuspension.com/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com https://www.gstatic.com https://fonts.gstatic.com 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.paypal.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com https://*.google.com https://hcaptcha.com https://*.hcaptcha.com https://challenges.cloudflare.com *.cookiebot.com js.mollie.com 'self' 'unsafe-inline'; img-src data: as

Links to (4)

Linked from (3)