indexo.dev

wjec.co.uk

.uk crawl

First seen 2026-05-25 · Last seen 2026-05-31 · ok HTTP/1.1 200 3130 ms crawled 2026-05-29

GB · 4.234.117.192 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Welcome to the WJEC homepage
Description
WJEC is a leading awarding organisation providing assessment, training and educational resources in England, Wales, Northern Ireland and elsewhere.
Language
en-GB
Canonical
https://www.wjec.co.uk/

Open Graph

title
Welcome to the WJEC homepage

Technology

jQuery
3.6.3
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • cdn.bc0a.com×1
  • cdn.synthetix.com×1
  • fonts.googleapis.com×1

Social

DNS records live

NS
  • ns-1522.awsdns-62.org
  • ns-1687.awsdns-18.co.uk
  • ns-306.awsdns-38.com
  • ns-583.awsdns-08.net
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 10 eu-smtp-inbound-2.mimecast.com
TXT
  • hkfy1l4765xc8q38w050zv3sh5hxz9sx
  • live-wjec-website.azurewebsites.net
  • access-domain-verification=65eff00375e1fbc4b995f690d4c4b2d73853a095193c00776dabc7079dfb5086
Verified for
  • Adobe
  • Apple
  • Atlassian
  • DocuSign
  • Google
  • Microsoft 365
  • Zoho

Email authentication strong

SPF
v=spf1 ip4:81.145.41.115/32 ip4:149.72.54.124 include:eu._netblocks.mimecast.com include:amazonses.com a:mail.production.fulfilmentcrowd.com include:spf.mandrillapp.com include:kallidus-suite.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc-rua@dmarc.service.gov.uk, mailto:dmarc@wjec.co.uk; ruf=mailto:dmarc@wjec.co.uk; fo=1
policy: quarantine
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6Ts5qUbtFgRwkFgPXj/OdzOzDq7MujtAHIRPkYXGH1/S1ylVY8oujtMqxsJGxMwTiRgVEoTywsk1nHKJe…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC50pCeIjwGWp4aH5fdGn1mUUDCh8uWIfsf/KAD23RFUvgkDS4QL5poEj0yaOKlbEGBJLT5ZGOPb6wHEkjE0oLpzm…
selectors probed

Certificate (current)

GandiCert
from 2025-06-04 to 2026-07-06
Expires in 35 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.wjec.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(),autoplay=(),camera=(),display-capture=(),fullscreen=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' *.synthetix.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' *.bing.com *.clarity.ms *.licdn.com *.52enterprisingdetails.com https://platform.twitter.com *.synthetix.com *.synthetix.com *.googletagmanager.com *.googleapis.com *.hotjar.com *.gstatic.com *.fullstory.com *.google-analytics.com *.aspnetcdn.com *.googleadservices.com *.facebook.net *.doubleclick.net *.youtube.com *.google.com *.bc0a.com;style-src 'self' *.googleapis.com *.synthetix.com *.cloudfront.net *.googletagmanager.com 'unsafe-inline';connect-src 'self' *.facebook.com *.bing.com *.getaddress.io *.doubleclick.net *.linkedin.com *.clarity.ms *.google.com *.hotjar.io *.hotjar.com *.google-analytics.com *.synthetix.com *.fullstory.com *.amazonaws.com wss://ws.hotjar.com/api/v2/client/ws *.googletagmanager.com *.google.co.uk *.bc0a.com;font-src 'self' *.gstatic.com *.hotjar.io *.hotjar.com;img-src 'self' data: https: syn-document-manager.s3.amazonaws.com *.synthetix.com data: *.google-analytics.com *.
strict-transport-security
max-age=2592000

Links to (7)

Linked from (3)