indexo.dev

vargroup.com

.com crawl

First seen 2026-05-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 1842 ms crawled 2026-05-18

US · 104.18.25.177 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

sector tech type landing page

HTML metadata

Title
Var Group | Digital Soul
Language
default
Canonical
https://www.vargroup.com/
Translations
  • en
  • it

Open Graph

url
https://www.vargroup.com/
title
Var Group | Digital Soul
locale
en

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
DNC Holdings, Inc.
Created
2008-09-05
Expires
2026-09-05 107 days left
Updated
2025-08-06
Name servers
  • tara.ns.cloudflare.com
  • yadiel.ns.cloudflare.com

DNS records live

NS
  • tara.ns.cloudflare.com
  • yadiel.ns.cloudflare.com
MX
  • 0 vargroup-com.mail.protection.outlook.com
TXT
  • eb5062ab45ac8b15e107567d83230c63
  • knowbe4-site-verification=fcc8c9b325d9bad576d8197c7f653553
  • 00D2o000000kChX=1TBc300000001aU
Verified for
  • Adobe
  • Anthropic
  • Apple
  • Atlassian
  • Cisco
  • Dynamics 365
  • Google
  • Miro

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:spfaut.leonet.it include:_spf.psm.knowbe4.com include:_spf.salesforce.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:29dac9f756ec43838cae5c64a69aadf9@dmarc-reports.cloudflare.net; sp=none; fo=0:1;
policy: none (monitoring only) · sp=none
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvISSYSLMiBXv+LIgbjgliHQZLqoukLqFk+PHrr6AG6Br09SXQ6uu9dnfuDiLn4ofvsrFiRqch7zcpK…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-05-14 to 2026-08-12
Expires in 84 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.vargroup.com/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' https://cdn.vargroup.com https://*.gstatic.com https://*.adacto.it https://*.vargroup.it https://*.vargroup.com http://*.tidiochat.com https://*.tidiochat.com https://*.dynamics.com https://*.genially.com https://*.typeform.com wss://*.typeform.com ws://*.typeform.com https://*.tidio.co; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.vargroup.com https://*.hsforms.net https://matomo01.bizmart2.it https://matomo.ubics.app https://sc-matomo.adacto.it https://consent.cookiebot.com https://consent.cookiebot.eu https://consentcdn.cookiebot.com https://consentcdn.cookiebot.eu https://*.googleapis.com https://*.google.com https://*.google.it https://*.gstatic.com http://*.hsforms.net https://*.hsforms.net https://*.recaptcha.net https://*.addthis.com https://*.intervieweb.it https://*.azureedge.net https://*.googletagmanager.com https://*.cloudflareinsights.com https://*.googleadservices.com https://*.doubleclick.net https://*.googlesyndication.com http://*.tid

Links to (6)

Linked from (2)