woffu.com
HTML metadata
Technology
- Server
- LiteSpeed
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (4)
- cdn.jsdelivr.net×2
- www.googletagmanager.com×2
- app.getshowme.ai×1
- px.ads.linkedin.com×1
Social
Contact
- Phone
- Address
- Carrer de Mexic, 8, 08004, Barcelona, ES
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2009-11-14
- Expires
- 2026-11-14 179 days left
- Updated
- 2025-12-19
- Name servers
-
- ns1-02.azure-dns.com
- ns2-02.azure-dns.net
- ns3-02.azure-dns.org
- ns4-02.azure-dns.info
DNS records live
- NS
-
- ns1-02.azure-dns.com
- ns2-02.azure-dns.net
- ns3-02.azure-dns.org
- ns4-02.azure-dns.info
- MX
-
- 1 aspmx.l.google.com
- 10 aspmx2.googlemail.com
- 10 aspmx3.googlemail.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 9 TXT records
woffu-public-web.azurewebsites.net3tc7th6d3uk9iipljqptrq9m7dgoogle-site-verification=3TeNisteuIBSN1bh1XZuMfxoMSWLWAHC9947D83k944google-site-verification=7yNLFc7Us_kcdlFrbchQfO6wEFzIbkUoAL6hwQ1xW4Mgoogle-site-verification=pYo8KQtM3v4nmixxLQNoP7P_bkwFyHBtTVWz17KmGVQgoogle-site-verification=SRKtmfz-UTUvaDNiSb9t4l7Pl3B8Osotk2vW3N43pKYMS=ms82612385pardot775343=10016b833887951e3a28055871bbeee42990c9103bedda55ddc8ce7cb63c4a76sending_domain775343=4cac9c0ee84bb182fa72db44569b84682326188926d839164d643227cd7020bd
Email authentication partial
- SPF
-
v=spf1 a mx include:_spf.google.com include:u3631008.wl009.sendgrid.net include:aspmx.pardot.com -allstrict (-all) - DMARC
-
v=DMARC1;p=none;pct=100;adkim=r;aspf=r;rua=mailto:devops@woffu.com;ruf=mailto:devops@woffu.com;fo=1;policy: none (monitoring only) - DKIM
-
- default:
v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDXeh+BdYG4U8a0VQfMTp1+Z3DmgOLFaxqzDWYu04qq7uzxNa+biFkZ/ZTtwZR12QFXK1OKoxc75fBIPl5ko8q2WuLRr… - google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiB2uFgvimsk9fC//kjuQqWzUso42pH/NE9N0zDwokMdZUWjNMFDjIVdJ/W1L/4IvcO4FdvXIExp4aO… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6dmI6PXYNgu9E1u9ir9VQduhrWAI8kX0+mPypSqm2q8lT5ez2qwaw6C0MLmTbk/6JN0kuENR0dfNfxCdD… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AySClTnItVN/9mK9XX2oBoWked4dfT4kTCI5oKUnWwLhoLRHn5pffHSliQ9MftdP0EcSwxQP4TfFOcSWZ…
selectors probed - default:
Certificate (current)
R13
Expires in 73 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
connect-src 'self' *.woffu.com *.firebaseio.com *.google-analytics.com *.googletagmanager.com *.googleapis.com *.doubleclick.net *.google.com *.google.es *.gstatic.com *.clarity.ms *.bing.com *.hotjar.com *.facebook.com *.linkedin.com *.landbot.io *.cookielaw.org *.onetrust.com *.trackingplan.com *.googleadservices.com *.jsdelivr.net *.googlesyndication.com https://plausible.io https://app.getshowme.ai https://cdn.getshowme.ai; default-src 'self' 'unsafe-inline' data: blob: go.woffu.com *.woffu.com *.wp.com *.firebaseio.com *.landbot.io *.cookiebot.com *.clarity.ms; font-src 'self' data: fonts.gstatic.com *.landbot.io; frame-src 'self' *.google.com *.googletagmanager.com *.doubleclick.net *.googlesyndication.com *.youtube.com *.vimeo.com *.facebook.com *.linkedin.com *.clarity.ms *.woffu.com *.facebook.net *.tradedoubler.com https://app.getshowme.ai https://tally.so; img-src 'self' data: blob: *.woffu.com *.wp.com *.google.com *.gstatic.com *.googleusercontent.com *.googletagmanager.co- strict-transport-security
max-age=31536000; includeSubDomains; preload
Links to (7)
- apple.com×2
- google.com×2
- linkedin.com×2
- site.com×2
- visma.com×2
- visma.es×2
- youtube.com×2