valormas.gov.co

.co crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 2642 ms crawled 2026-05-20

US · 18.211.208.209 · AS14618 Amazon.com, Inc.

Reputation 100/100

sector other type homepage

HTML metadata

Title

Valor Mas SAS |

Language

Generator

Divi v.4.27.4

Canonical

https://valormas.gov.co/

Feeds

Technology

Server: Apache
CMS: WordPress 4.27.4 outdated (current 6.8)
jQuery: 3.7.1

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

s3-site-vmas-cdn.s3.amazonaws.com×30
fonts.googleapis.com×5
www.google.com×1
www.googletagmanager.com×1

Social

Contact

Email

Phone

DNS records live

NS

ns-1406.awsdns-47.org
ns-1661.awsdns-15.co.uk
ns-423.awsdns-52.com
ns-895.awsdns-47.net

MX

0 valormas-gov-co.mail.protection.outlook.com

Verified for

Brevo
Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:spf1.masivapp.com include:_spf.us.sendclean.net -all

strict (-all)

DMARC

v=DMARC1; p=quarantine;

policy: quarantine

DKIM

Show 5 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1CeeHvm8aH7tone2QMPp0oP9WCscMw0UUIdZ0n9OVd5UxxJNbqaLo/9Bs6drCuzA5WThWyuPQTdZak3bO6V…
dkim: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPCcvJPwSgKMRiWh/ygMdPw0sNlhxJVYCNa54kM3dMruCpzYEOSdEK4HezuYnLY+CQ+PEWTifj3yuSxbrK0R…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtS3Z9qSo9IOIVPhonk45zA+SqcwwQZ/gOqYplrjkXdo7c48zaCpM2lY0nsl2v0m7jvHtM3t/q5+HHbgl7…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCuMByOYo3aEWY2vhx2GoPusDQu5R4ZV2JhZe2nrWjmhGw8Foot+NzwrXL1RV3A9ZRjIaLQ1GJm5Mf1jUqwoC7aJ7…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-06-25 to 2026-07-25

Expires in 65 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://valormas.gov.co/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://apis.google.com https://code.jquery.com https://ajax.googleapis.com https://www.youtube.com https://www.googletagmanager.com https://www.google-analytics.com https://cdn.equalweb.com https://access.equalweb.com https://translate.googleapis.com https://translate.google.com https://maps.googleapis.com https://www.gstatic.com https://www.google.com https://kit.fontawesome.com https://cdn.datatables.net https://translate-pa.googleapis.com https://cdn.jsdelivr.net https://cdn.jsdelivr.net/npm https://cdn.jsdelivr.net/npm/popper.js https://cdn.jsdelivr.net/npm/bootstrap https://platform.twitter.com https://connect.facebook.net https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://maxcdn.bootstrapcdn.com https://polyfill.io; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdn.jsdelivr.net https://use.fontawesome.com https://cdn.equalweb.com htt

Links to (5)

Linked from (1)

aguardienteantioqueno.com×3