wearecollins.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-14 · ok HTTP/1.1 200 2667 ms crawled 2026-05-07

US · 75.2.60.5 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: COLLINS
Description: Make your company as valuable as it is unignorable.
Language: en

Open Graph

url: https://www.wearecollins.com
title: COLLINS
locale: en_US
site name: COLLINS
description: Make your company as valuable as it is unignorable.

Technology

CDN: Netlify
CMS: Nuxt

Third-party hosts loaded (1)

image.mux.com×2

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2015-03-03

Expires

2029-03-03 1018 days left

Updated

2026-03-04

Name servers

ns-1155.awsdns-16.org
ns-1610.awsdns-09.co.uk
ns-88.awsdns-11.com
ns-954.awsdns-55.net

DNS records live

NS

ns-1155.awsdns-16.org
ns-1610.awsdns-09.co.uk
ns-88.awsdns-11.com
ns-954.awsdns-55.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 8 TXT records

google-site-verification=ZImcifUmWdJaNr8V70e-5fPWfRoqEJE5GT029Nm4KQ8
miro-verification=203f8f798363b35aab381f6d683b3f33e2f6c89c
v=sof1 includ:_spf.google.com exists:%{i}._spf.inkyphishfence.com ~all
977C4A9942
F6F7EF88C5
apple-domain-verification=Pe9CMoRnIkTVYjG2
dropbox-domain-verification=sytxkyi0uvgg
figma-domain-verification=fa95e31375e9c78d9a6d68c7a2b32fd1e7c0c4b56ac82a80d5d0b2e40e8d77b4-1727708385

Email authentication partial

SPF

not published

DMARC

v=DMARC1; p=none; rua=mailto:reports@reports-sg.inkydmarc.com;

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscFkSd4EYkz4Z0D5EtenOOmZAW3VaAd08RzMWCvbW6Wo8zadDmRhAIatB8rxOD5XfMzNqhrsg1f2tF…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

from 2026-03-14 to 2026-06-12

Expires in 24 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://wearecollins.com/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://collins2025.netlify.app https://www.wearecollins.com https://collins2025admin.netlify.app; manifest-src 'self'; img-src 'self' data: https://cdn.sanity.io https://image.mux.com https://*.mux.com https://*.clarity.ms https://c.bing.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.clarity.ms https://api.openpanel.dev https://*.mux.com https://src.litix.io https://www.gstatic.com https://*.gstatic.com; style-src 'self' 'unsafe-inline'; font-src 'self' data:; connect-src 'self' https://collins2025.netlify.app https://www.wearecollins.com https://collins2025admin.netlify.app https://api.openpanel.dev https://*.mux.com https://litix.io https://*.litix.io https://inferred.litix.io https://*.clarity.ms https://*.apicdn.sanity.io https://fmzd4n68.apicdn.sanity.io; frame-src 'self' https://*.mux.com; media-src 'self' https://*.mux.com data: blob:
strict-transport-security: max-age=31536000