varonis.io

HTML metadata

Title

Varonis | Leader in Data and AI Security. For Cloud, SaaS and On-Prem

Description

The leading data and AI security platform that proactively reduces risk, enforces policies, and stops active threats with our AI-native automation.

Language

en

Generator

HubSpot

Canonical

https://www.varonis.com

Translations

de
en
es
fr
it
ja
pt-br

Open Graph

url: https://www.varonis.com
title: Varonis | Leader in Data and AI Security. For Cloud, SaaS and On-Prem
description: The leading data and AI security platform that proactively reduces risk, enforces policies, and stops active threats with our AI-native automation.

Technology

CDN: Cloudflare
CMS: Joomla

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (5)

www.varonis.com×227
cse.google.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
www.googletagmanager.com×1

Social

DNS records live

NS

ns1-01.azure-dns.com
ns2-01.azure-dns.net
ns3-01.azure-dns.org
ns4-01.azure-dns.info

TXT

Show 15 TXT records

box-domain-verification=a462b1253ed6a3b935d37d178e240a3dbf1c0449bfed3fde9f65ff55c225c235
_ll4be1nt014hef6zkpr61xiwamvc2sz
_globalsign-domain-verification=b6f36c0655fbedeb7857dc9d5c5b0f7c
globalsign-domain-verification=b6f36c0655fbedeb7857dc9d5c5b0f7c
b6f36c0655fbedeb7857dc9d5c5b0f7c
ej2ldcode8ocer9kvj2slmd6j5
globalsign-domain-verification=4fe3ab58a43259c2e4083776bed000d8
safebreach-domain-verification=8dca26a9-b741-4fe7-86dd-95dc9ab5487c
globalsign-domain-verification=F8B4C946FDF8742A8E7391B6483F9C14
tjmnlf4g6m4vgnmsdm2rcu7p1q
uhqpaeg3imd6tmnuai61uvuna6
p42ujc2tnpbsikcnje2oddg91v
0xh413tsg7ywfhfqm7q18k7mvxp6f6tt
globalsign-domain-verification=11679C98857479FCA1B75F3DB54C5A5F
globalsign-domain-verification=8116056F01C371FAA4E793D950D11943

Email authentication no MX

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:reports@dmarc.cyber.dhs.gov

policy: reject (enforced)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ad5OhL1iKbUeyYp/AjKpavRqesAonSKCrYu/wo07129/Fei/OjosiNkP92hz/5jX7dV2LQe3c2Dsv6r8N…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4K0xTsDHYzpw49COfo++v7JCVGrPKzLsp8eX48zAkwxJGX97TGXrxM19Bqb1ZXHnPu8kKujpwF6iEulQNpx4pA/…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-01-08 to 2026-07-09

Expires in 51 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://varonis.io/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.6sc.co *.a.net *.ads-twitter.com *.bing.com *.bizible.com *.cloudflare.com *.doubleclick.net *.facebook.net *.google-analytics.com *.google.com *.googletagmanager.com *.hs-analytics.net *.hs-banner.com *.hsadspixel.net *.hsappstatic.net *.hscollectedforms.net *.hsforms.com *.hsforms.net *.hsleadflows.net *.hs-scripts.com *.hubspot.com *.hubspot.net *.hubspotfeedback.com *.hubspotusercontent00.net *.hubspotusercontent10.net *.hubspotusercontent20.net *.hubspotusercontent30.net *.hubspotusercontent40.net *.jquery.com *.jsdelivr.net *.ktxlytics.io *.linkedin.com *.licdn.com *.redditstatic.com *.salesloft.com *.sentry-cdn.com *.stackadapt.com *.twitter.com *.usemessages.com *.varonis.com *.wistia.com *.wistia.net *.zi-scripts.com cdn.boomtrain.com dreamdata.min.js feedback-eu1.hubapi.com feedback.hubapi.com js
strict-transport-security: max-age=31536000