www.gov.co
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- govco
- Fonts
-
- Google Fonts
Third-party hosts loaded (6)
- cdn.jsdelivr.net×3
- robi.and.gov.co×2
- cdnjs.cloudflare.com×1
- code.jquery.com×1
- fonts.gstatic.com×1
- www.google.com×1
DNS records live
- NS
-
- ns-1462.awsdns-54.org
- ns-1823.awsdns-35.co.uk
- ns-479.awsdns-59.com
- ns-943.awsdns-53.net
- MX
-
- 10 inbound-smtp.us-east-1.amazonaws.com
Email authentication partial
- SPF
-
v=spf1 include:amazonses.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
Amazon RSA 2048 M01
Expires in 184 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
geolocation=(), microphone=(), camera=(), fullscreen=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'none'; img-src 'self' data: https://www.gstatic.com/ https://das997q1qk8hr.cloudfront.net/ https://d1ptydd472wya2.cloudfront.net/ https://administrationprodand.blob.core.windows.net/ https://www.googletagmanager.com/ https://cdn.userway.org/ https://main.d13ii72uef0dx1.amplifyapp.com/ https://cdn.datatables.net/ https://aws-cdn.www.gov.co/ https://govco-prod-webutils.s3.us-east-1.amazonaws.com/ https://bot.www.gov.co/ https://d31b6wl7v65wwb.cloudfront.net/ https://fonts.gstatic.com/ https://www.google.com.co/ https://a.tile.openstreetmap.org/ https://b.tile.openstreetmap.org/ https://c.tile.openstreetmap.org/ https://beta.www.gov.co/ https://cdn.www.gov.co https://govco-preprod-webutils.s3.amazonaws.com/ https://govco-poc.s3.us-east-2.amazonaws.com https://govco-test-webutils.s3.amazonaws.com https://govco-prod-webutils.s3.amazonaws.com https://www.gov.co https://precdn.www.gov.co/ https://www.google.com/; script-src 'self' 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval' htt- strict-transport-security
max-age=31536000; includeSubdomains; preload
Linked from (50)
- mincit.gov.co×4
- fontur.com.co×4
- datos.gov.co×4
- bancoldex.com×4
- fogafin.gov.co×4
- sucop.gov.co×4
- minvivienda.gov.co×4
- urnadecristal.gov.co×4
- mincultura.gov.co×4
- cpae.gov.co×4
- vuce.gov.co×4
- vue.gov.co×4
- udea.edu.co×4
- dnp.gov.co×4
- coljuegos.gov.co×4
- mipymes.gov.co×4
- dirliquidacionesbq.gov.co×3
- amc.gov.co×3
- puertocolombia-atlantico.gov.co×3
- amb.gov.co×3
- fondomujer.gov.co×3
- valormas.gov.co×3
- colombiacompra.gov.co×3
- asambleadeantioquia.gov.co×3
- bogota.gov.co×3
- ideam.gov.co×3
- prosperidadsocial.gov.co×3
- cnsc.gov.co×3
- sdmujer.gov.co×3
- colombiaaprende.edu.co×3
- crautonoma.gov.co×3
- idartes.gov.co×3
- ambq.gov.co×3
- crcom.gov.co×3
- parquesnacionales.gov.co×3
- yomidolacalidad.gov.co×3
- canalcapital.gov.co×3
- fla.com.co×3
- invias.gov.co×3
- fna.gov.co×3
- cormagdalena.gov.co×3
- culturarecreacionydeporte.gov.co×3
- idrd.gov.co×3
- barranquillaverde.gov.co×3
- supertransporte.gov.co×3
- tlc.gov.co×3
- invima.gov.co×3
- fiducoldex.com.co×3
- minjusticia.gov.co×3
- ctcp.gov.co×3