visitbogota.co

.co crawl

First seen 2026-04-12 · Last seen 2026-05-05 · ok HTTP/1.1 200 4156 ms crawled 2026-05-05

US · 172.67.187.217 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

Inicio | Visit Bogotá

Language

Generator

Drupal 11 (https://www.drupal.org)

Canonical

https://visitbogota.co/es

Translations

en
es
pt-br

Technology

CDN: Cloudflare
CMS: Drupal

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

cdn.jsdelivr.net×4
www.googletagmanager.com×2
fonts.googleapis.com×1
unpkg.com×1

Social

Contact

Phone

DNS records live

NS

felipe.ns.cloudflare.com
ullis.ns.cloudflare.com

MX

0 _dc-mx.2980230bdaee.visitbogota.co

TXT

v=spf1 include:spf.hostmar.com include:_spf.createsend.com ~all
google-site-verification=zJ-Px8FEDnNGwCbx3oxsznxURY83hn8rBQqMqDoaHsQ

Certificate (current)

WE1

from 2026-04-22 to 2026-07-21

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://visitbogota.co/es

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com https://googleads.g.doubleclick.net https://static.doubleclick.net https://www.googletagmanager.com https://connect.facebook.net https://maps.googleapis.com https://cdn.jsdelivr.net https://www.youtube.com https://sandi.ver.com.co https://www.smartsuppchat.com https://cdnjs.cloudflare.com https://static.cloudflareinsights.com; img-src 'self' data: blob: https: http:; style-src 'self' 'unsafe-inline' https: https://fonts.googleapis.com https://unpkg.com; font-src 'self' data: https: https://fonts.gstatic.com https://fonts.googleapis.com; connect-src 'self' https://www.google-analytics.com https://analytics.google.com https://googleads.g.doubleclick.net https://static.doubleclick.net https://maps.googleapis.com https://sandi.ver.com.co https://cdn.jsdelivr.net https://www.facebook.com https://*.smartsuppchat.com https://sketchfab.com https://cloud
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (9)

Linked from (1)

bogota.gov.co×3