wattstor.com
wattstor.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- jQuery
- 3.7.1
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (3)
- cdn-cookieyes.com×1
- js.hsforms.net×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- Register SPA
- Created
- 2012-12-31
- Expires
- 2032-12-31 2405 days left
- Updated
- 2023-01-01
- Name servers
-
- chin.ns.cloudflare.com
- rudy.ns.cloudflare.com
DNS records live
- NS
-
- chin.ns.cloudflare.com
- rudy.ns.cloudflare.com
- MX
-
- 10 aspmx.l.google.com
- 20 alt1.aspmx.l.google.com
- 30 alt2.aspmx.l.google.com
- 50 aspmx3.googlemail.com
- TXT
-
Show 4 TXT records
autodesk-domain-verification=M1MJeHuStff15nhrFOKcamazon-business-verification=ea8dfdee1a68e5ff9e3c2dc6b2ebf58c9f6b3d6a1302c7b1a1fbffee2f6cac28fireflies-verification=01KPD9DQWN5KG9SQT48VYK8PM4.ffverify.fireflies.ai-request-verification=2026-04-17T08:37:52Zjetbrains-domain-verification=v56hlhpmo4jv3x87hi4piuie
- Verified for
-
- Anthropic
- Apple
- Atlassian
- Miro
- OpenAI
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com include:spf.hosts.co.uk include:5998632.spf01.hubspotemail.net include:_spf.psm.knowbe4.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; sp=reject; rua=mailto:re+9c32cd33db33@inbound.dmarcdigests.com; pct=100policy: reject (enforced) · sp=reject - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgi4rA4voYZumIizw2Fc8nIKaNcF5/a74ILsa5wi2oSpjDUoIJ2zarpgwu1NcGrQrqg8rDD1r+1wec…
selectors probed - google:
Certificate (current)
WE1
Expires in 63 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), autoplay=(self), camera=(), display-capture=(), encrypted-media=(self), fullscreen=(self), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), web-share=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://pagead2.googlesyndication.com https://snap.licdn.com https://js.hsadspixel.net https://js.hs-banner.com https://js.hscollectedforms.net https://js.hs-analytics.net https://js.hsforms.net https://js.hs-scripts.com https://static.hotjar.com https://script.hotjar.com https://www.clarity.ms https://scripts.clarity.ms https://cdn-cookieyes.com https://player.vimeo.com https://*.wattstor.com; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.wattstor.com; img-src 'self' data: https: blob:; font-src 'self' data: https://fonts.gstatic.com https://*.wattstor.com; connect-src 'self' https://www.google-analytics.com https://googleads.g.doubleclick.net https://www.google.co.uk https://directory.cookieyes.com https://static.hsappstatic.net https://stats.g.doubleclick.net https:- strict-transport-security
max-age=31536000; includeSubDomains