indexo.dev

winstonmarshall.co.uk

.uk crawl

First seen 2026-04-15 · Last seen 2026-05-10 · ok HTTP/1.1 200 1868 ms crawled 2026-05-09

US · 3.33.251.168 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Winston Marshall | Substack
Description
The writings, music and podcasts of Winston Marshall. Click to read Winston Marshall, a Substack publication with tens of thousands of subscribers.
Language
en
Canonical
https://www.winstonmarshall.co.uk/
Feeds

Open Graph

url
https://www.winstonmarshall.co.uk/
title
Winston Marshall | Substack
description
The writings, music and podcasts of Winston Marshall. Click to read Winston Marshall, a Substack publication with tens of thousands of subscribers.

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Cloudflare Insights

Third-party hosts loaded (3)

  • substackcdn.com×264
  • js.sentry-cdn.com×1
  • static.cloudflareinsights.com×1

Registration

Registrar
GoDaddy.com, LLC.
Created
2021-06-11
Expires
2026-06-11 21 days left
Updated
2025-05-14
Name servers
  • ns15.domaincontrol.com.
  • ns16.domaincontrol.com.

DNS records live

NS
  • ns15.domaincontrol.com
  • ns16.domaincontrol.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • NETORGFT8830245.onmicrosoft.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:will@winstonmarshall.co.uk
policy: none (monitoring only)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwd+BAfIZI66z9hrFapXGJTNuI/QHnGeOss2MQKBxJxNfBMl1yXiTHWtDcBAwRzMcyXtSAS6rDJeNT…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2026-02-11 to 2026-08-28
Expires in 100 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.winstonmarshall.co.uk/

present
  • strict-transport-security
  • content-security-policy
findings
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
frame-ancestors 'self' https://*.substack.com https://substack.com
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (9)

Linked from (2)