worksafebc.com

HTML metadata

Title: WorkSafeBC
Language: en
Generator: Sitecore

Technology

CDN: Azure Front Door

Analytics

Google Tag Manager

Third-party hosts loaded (3)

ajax.googleapis.com×1
s7.addthis.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

Webnames.ca Inc.

Created

1999-04-08

Expires

2027-04-08 322 days left

Updated

2026-04-28

Name servers

ns1-04.azure-dns.com
ns2-04.azure-dns.net
ns3-04.azure-dns.org
ns4-04.azure-dns.info

DNS records live

NS

ns1-04.azure-dns.com
ns2-04.azure-dns.net
ns3-04.azure-dns.org
ns4-04.azure-dns.info

MX

1 worksafebc-com.mail.protection.outlook.com

TXT

symBq/YxZBl0WQzK2B/HQiCSDEyw1G7SziqCdAZ4G4oLl6orH3EatyQqCGsMJmqf8puEDI7CH3IvHQUryCds4w==
vmware-cloud-verification-12612aa8-a6be-480e-bfe0-c51fda90bf00
docker-verification=dbffe4fa-fa51-49c4-8f8e-1b4043f0ec2d

Verified for

Apple
DocuSign
Dynamics 365
Dynatrace
Google
HashiCorp
Meta
Microsoft
Miro

Email authentication strong

SPF

v=spf1 ip4:20.200.87.94 ip4:64.40.99.134 ip4:142.34.141.8/31 ip4:206.152.34.81 ip4:204.136.15.135 ip4:65.93.243.11 include:spf.protection.outlook.com include:spfa.cpmails.com include:spf.flowmailer.net include:spf_c.oraclecloud.com include:mail.recollective.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc-a@worksafebc.com; ruf=mailto:dmarc-f@worksafebc.com; adkim=s; aspf=s

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCQwCcfwrqKHNKmvgRpRMGvBFrdg5Rq+N+Fvib6LSrxVC2cM4FM5+iocMpwWAh3CSCNGLntzd3aWweK0wHR+F…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0+6j/Rl3ODGPd19Db7ly8p9YaPExEVuLEUHYPtMYV8xK4IeQr4MBUxi1xzE/I+lC7pdkp9ONmQ8v7G7Xp…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOj1/K0f6Rerfyu5TmYeNFkHFI5P/ojFbdJobh+Rlj3af/niObnGfLl2Upv3tqj4wNnFmYxyfonSvVaX7EzBU+x8…

selectors probed

Certificate (current)

Entrust EV TLS Issuing RSA CA 2

from 2025-11-20 to 2026-11-21

Expires in 184 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.worksafebc.com/en

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
weak frame protection
weak content type protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
content-security-policy: default-src 'self' https://as-wsbcprodcd-01.azurewebsites.net https://as-wsbcprodcd-02.azurewebsites.net *.addthis.com; frame-src 'self' https://www.googletagmanager.com https://services.worksafebc.com https://td.doubleclick.net *.qualtrics.com https://documentservices.adobe.com https://web.powerva.microsoft.com https://ct.pinterest.com *.fls.doubleclick.net *.svc.dynamics.com *.addthis.com *.addthisedge.com *.youtube.com https://i.ytimg.com *.google.com *.facebook.com https://app.powerbi.com https://worksafebcmedia.com; frame-ancestors 'self' *.youtube.com; img-src 'self' data: https://ad.doubleclick.net https://analytics.google.com https://sp.analytics.yahoo.com https://googleads.g.doubleclick.net https://www.linkedin.com *.azureedge.net *.mkt.dynamics.com *.siteimproveanalytics.io https://services.worksafebc.com https://ct.pinterest.com https://p.adsymptotic.com https://px.ads.linkedin.com *.google-analytics.com *.analytics.google.com https://gtrk.s3.amazonaws.com *.caspio.com https
strict-transport-security: max-age=31536000; includeSubDomains

Links to (5)

Linked from (2)

awcwater.com×2
unifor433.org×1