zones.com
HTML metadata
Technology
- CDN
- Akamai
- CMS
- Gatsby
- jQuery
- 3.3.1 known XSS (<3.5)
- Stack
- Java
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (11)
- fonts.googleapis.com×7
- cdnjs.cloudflare.com×3
- fonts.gstatic.com×3
- www.googletagmanager.com×2
- challenges.cloudflare.com×1
- code.jquery.com×1
- js.hsforms.net×1
- player.vimeo.com×1
- tag.simpli.fi×1
- vidassets.terminus.services×1
- www.facebook.com×1
Social
Contact
Registration
- Registrar
- Network Solutions, LLC
- Created
- 1995-09-04
- Expires
- 2034-09-03 3014 days left
- Updated
- 2024-09-03
- Name servers
-
- a1-116.akam.net
- a13-64.akam.net
- a16-64.akam.net
- a22-66.akam.net
- a26-64.akam.net
- a3-64.akam.net
DNS records live
- NS
-
- a1-116.akam.net
- a13-64.akam.net
- a16-64.akam.net
- a22-66.akam.net
- a26-64.akam.net
- a3-64.akam.net
- MX
-
- 10 mailgate.zones.com
- 20 zones-com.mail.protection.outlook.com
- 30 mailgate03.zones.com
- TXT
-
Show 5 TXT records
VUROFXaQiMTN+dSbwCZHEjMf+7xBoKDk2dm8iBzd0NjqpgkcEMemaERd3cF1DzaWdPEyOn3sIsq/YokCNLuwMg==docker-verification=2032d200-c66a-4a7f-8b33-fd965c670e5dciscocidomainverification=8226bdb9c9a05720eae7955d418b8068025512f314bbc03b059fd354cc68b38_i36v792b1r1in7i6nulde5959mvc34oQ4Gz4ujgmGhYTg88qB0cZcz18dMiG/K8l3CCO3soEGsPk5oVkQmk1tNX7aQCCkCpu8iSDIiRNJ0Co7Uk/ruA8Q==
- Verified for
-
- Adobe
- Apple
- Cisco
- DocuSign
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 ip4:204.134.129.80 ip4:50.237.250.208 ip4:207.243.227.18 ip4:207.243.227.19 include:spf.protection.outlook.com include:_spf.qualtrics.com include:spf.exclaimer.net a:c.spf.service-now.com a:b.spf.service-now.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:dmarc.report@zones.com,mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc.report@zones.com,mailto:dmarc_ruf@emaildefense.proofpoint.com; fo=1;policy: reject (enforced) - DKIM
-
Show 6 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCXdKiPh+KShfrPbqdiJCoMaslGzHMaNkp+lqDVlKXSGYh22A+gmvKO2xxRgvDHWoJ5ZaD6OGVd2p3a8pfQz3… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0e6G8VEixGT7P3JdH7Afu6rDyhRMDVfOaTheu5z6mtQ+ezbKIn6yQlw/y/l2PnujcCpMpC0i1C6Yhu… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PSsByrEpXcVTD+eXhf3eOkepr+KWeCkNInsd60Stl4egdoL1ONAgPTHnHo2teR90+w2I4R7fykdvCUJVO… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW06WGmCeS6IO0mqlLwCLGWezAwEgONSL8U9ftxkhV1j3Zr5rdEolCDOOOhnF0SEMxsLBLiTwiZDlgsxLk…
selectors probed - selector1:
Certificate (current)
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 59 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
sameorigin- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://*.zones.com, default-src * data:; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'- strict-transport-security
max-age=31536000; includeSubDomains; preload
Links to (5)
- youtube.com×1
- x.com×1
- linkedin.com×1
- instagram.com×1
- facebook.com×1