trustonic.com
HTML metadata
Technology
- Server
- nginx
- CMS
- WordPress
- Cookie consent
-
- Iubenda
Third-party hosts loaded (3)
- cdn.iubenda.com×3
- code.jquery.com×2
- cs.iubenda.com×1
Social
Registration
- Registrar
- Nom-iq Ltd. dba COM LAUDE
- Created
- 2006-06-12
- Expires
- 2027-06-12 389 days left
- Updated
- 2026-05-13
- Name servers
-
- nsgbr.comlaude.co.uk
- nssui.comlaude.ch
- nsusa.comlaude.net
DNS records live
- NS
-
- nsgbr.comlaude.co.uk
- nssui.comlaude.ch
- nsusa.comlaude.net
- MX
-
- 0 trustonic-com.mail.protection.outlook.com
- TXT
-
Show 9 TXT records
ms=ms13665114spz93bzn9vmvhrc8rh4qjjf6brhx6jd6google-site-verification=B_Ztzqgv2t-XuLanwNUTwcysEHMsvQZdbJniI7mfg3Ygoogle-site-verification=kAgqN7xpBzEUf1iqGW7TeETG-OP1BHRVFcdL9AF3AfYatlassian-domain-verification=H84DFLCY2fT6DjBVvDTOUw3NiTg2BWwOwmRjT9qHAE928VdFFEaSNnx2TgccIKnKfigma-domain-verification=520a8818ff841bf66a54eb9f00efac089211a7a58cc3fb3162e6e1f5a0302115-1730387081apple-domain-verification=FIGnF6EVOlpuXMXEanthropic-domain-verification-20jqtx=7kKILekdnLW72aJHBlfQ2yZd0google-site-verification=0ty5GAN2POXU5mIGxR960iP5BZ71LzqateOAnw5htDM
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:amazonses.com include:spfa.cpmails.com include:_spf.salesforce.com ip4:35.177.15.238 ip4:18.133.106.179 ip4:192.254.125.237 -allstrict (-all) - DMARC
-
v=DMARC1;p=reject;sp=reject;pct=100;adkim=r;aspf=r;fo=1;rua=mailto:dmarc_agg@vali.email;ruf=mailto:dmarc_agg@vali.email;policy: reject (enforced) · sp=reject - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz66cEVSCmA/K8tWEN+64Pq2sCdOIsYzefcKvvnsVWcdgwFDNJhvQ2mV53UbvoSQyi7J9/21JJlxyHY… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/YIpyNLgX4RPBhqq2hltgR30jG6EsVGYuXMxxF4NyVZ0n9pKzLNiBWj2dLkHt806QuzFR04eiMd45…
selectors probed - selector1:
Certificate (current)
E8
Expires in 35 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; frame-src 'self' https://*.iubenda.com https://player.vimeo.com https://www.youtube.com https://*.youtube.com https://*.youtube-nocookie.com https://*.facebook.com https://youtube-nocookie.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.googletagmanager.com https://www.googletagmanager.com https://connect.facebook.net https://px.ads.linkedin.com https://snap.licdn.com https://*.iubenda.com https://*.hs-analytics.net https://*.hs-scripts.com https://*.hsadspixel.net https://*.hs-banner.com https://*.hscollectedforms.net https://*.hubspot.com https://*.hubapi.com https://*.hsappstatic.net https://*.clarity.ms https://analytics.tiktok.com https://googleads.g.doubleclick.net https://*.googlesyndication.com https://static.websites.data-crypt.com https://code.jquery.com https://*.googleapis.com https://*.gstatic.com https://*.youtube.com https://*.facebook.com https://*.ytimg.com; script-src-elem 'self' 'unsafe-inli