zolsec.com

.com crawl

First seen 2026-05-15 · Last seen 2026-05-15 · ok HTTP/1.1 200 882 ms crawled 2026-05-19

US · 104.18.28.186 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector tech type homepage

HTML metadata

Title: Bespoke Software Development Solutions in the UK and Beyond - Zolsec
Description: Drive growth with bespoke software development from Zolsec. Based in the UK, we engineer and support enduring, scalable solutions across software, mobile, and cloud platforms to meet your goals.
Language: en

Open Graph

url: https://zolsec.com
title: Bespoke Software Development Solutions in the UK and Beyond
locale: en_GB
site name: Bespoke Software Development Solutions in the UK and Beyond
description: Drive growth with bespoke software development from Zolsec. Based in the UK, we engineer and support enduring, scalable solutions across software, mobile, and cloud platforms to meet your goals.

Technology

CDN: Cloudflare
CMS: Gatsby

Third-party hosts loaded (1)

fonts.bunny.net×2

Social

Contact

Phone

+441919332271

Registration

Registrar

NameCheap, Inc.

Created

2024-04-09

Expires

2027-04-09 323 days left

Updated

2026-03-10

Name servers

bella.ns.cloudflare.com
hayes.ns.cloudflare.com

DNS records live

NS

bella.ns.cloudflare.com
hayes.ns.cloudflare.com

MX

0 zolsec-com.mail.protection.outlook.com

TXT

atlassian-sending-domain-verification=ce828959-901e-41ae-931c-a1e5145c8fad

Verified for

Atlassian
Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:spf.uk.exclaimer.net include:amazonses.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDHmZ1rwb8zDr0I8zIZGRSpYs4TxsuCK0/5RjGDhWZPvubpK/V427m8vt/MYegnQBo+636nivvON9l…

selectors probed

Certificate (current)

WE1

from 2026-04-18 to 2026-07-17

Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://zolsec.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), display-capture=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=(), autoplay=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'nonce-fAZcLRga7AFU8KEQ78MB037elW1FS6xAFLOYQZQ6' 'strict-dynamic' 'unsafe-inline' https://*.hcaptcha.com https://challenges.cloudflare.com https://zolsec.com 'report-sample'; style-src 'nonce-fAZcLRga7AFU8KEQ78MB037elW1FS6xAFLOYQZQ6' 'self' https://fonts.bunny.net https://*.hcaptcha.com 'report-sample'; img-src 'self' data:; connect-src 'self' https://*.hcaptcha.com; font-src 'self' https://fonts.bunny.net; frame-src 'self' https://*.hcaptcha.com https://www.youtube-nocookie.com https://challenges.cloudflare.com; object-src 'none'; base-uri 'self'; worker-src 'self' blob: https://*.hcaptcha.com; manifest-src 'self'
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-resource-policy: same-site