DNS Gurus
Cached · just now
16 directives

Content-Security-Policy

block-all-mixed-content Source
(no sources)
base-uri Keyword
'none'
connect-src Keyword
'self'
connect-src Host
https://api.monzo.com
ASN | Cloudflare
connect-src Host
https://internal-api.monzo.com
ASN | Amazon
connect-src Host
https://api.tools.s101.nonprod-ffs.io
connect-src Host
https://static-assets.monzo.com
ASN | Amazon
connect-src Host
https://static-assets.monzo-s101.com
ASN | Amazon
connect-src Host Amazon S3 logo Amazon S3
https://monzo-prod-s3bucketcreator-ffs-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
connect-src Host Amazon S3 logo Amazon S3
https://monzo-s101-s3bucketcreator-ffs-nonprod-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
connect-src Host AWS logo AWS
https://monzo-s101-qr-challenge.s3.eu-west-1.amazonaws.com
ASN | Amazon
connect-src Host AWS logo AWS
https://monzo-prod-qr-challenge.s3.eu-west-1.amazonaws.com
ASN | Amazon
connect-src Host AWS logo AWS
https://monzo-s101-s3bucketcreator-bereavement-files.s3.eu-west-1.amazonaws.com
ASN | Amazon
connect-src Host AWS logo AWS
https://monzo-prod-s3bucketcreator-bereavement-files.s3.eu-west-1.amazonaws.com
ASN | Amazon
connect-src Host
https://api.s101.nonprod-ffs.io
ASN | Amazon
connect-src Host Sentry logo Sentry
https://sentry.io
ASN | Google Cloud
connect-src Host Sentry logo Sentry
https://*.ingest.sentry.io
connect-src Host Sentry logo Sentry
https://*.ingest.us.sentry.io
connect-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com
ASN | Microsoft
connect-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.net
ASN | Microsoft
connect-src Host Contentful logo Contentful
https://assets.ctfassets.net
ASN | Amazon
connect-src Host Facebook logo Facebook
https://www.facebook.com
ASN | Facebook
connect-src Host Google DoubleClick logo Google DoubleClick
https://googleads.g.doubleclick.net
ASN | Google
connect-src Host Google DoubleClick logo Google DoubleClick
https://stats.g.doubleclick.net
ASN | Google
connect-src Host Google Conversion Tracking logo Google Conversion Tracking
https://adservice.google.com
ASN | Google
connect-src Host Google Conversion Tracking logo Google Conversion Tracking
https://www.googleadservices.com/pagead/
ASN | Google
connect-src Host Google DoubleClick logo Google DoubleClick
https://ad.doubleclick.net
ASN | Google
connect-src Host Google Analytics logo Google Analytics
https://*.google-analytics.com
ASN | Google
connect-src Host Google Analytics logo Google Analytics
https://*.analytics.google.com
ASN | Google
connect-src Host Google Search logo Google Search
https://www.google.com
ASN | Google
connect-src Host Google AdSense logo Google AdSense
https://*.googlesyndication.com
ASN | Google
connect-src Host Google Tag Manager logo Google Tag Manager
https://*.googletagmanager.com
ASN | Google
connect-src Host Google DoubleClick logo Google DoubleClick
https://*.g.doubleclick.net
connect-src Host
https://*.google.com
ASN | Google
connect-src Host
https://*.google.co.uk
ASN | Google
connect-src Host Google Search logo Google Search
https://google.com
ASN | Google
connect-src Host Greenhouse logo Greenhouse
https://api.greenhouse.io
ASN | Amazon
connect-src Host
https://cdn.linkedin.oribi.io
connect-src Host LinkedIn logo LinkedIn
https://px.ads.linkedin.com
ASN | Microsoft
connect-src Host LinkedIn logo LinkedIn
https://px4.ads.linkedin.com
ASN | Microsoft
connect-src Host
https://client.prod.mplat-ppcprotect.com
ASN | Amazon
connect-src Host
https://click.prod.mplat-ppcprotect.com
ASN | Amazon
connect-src Host
https://pclick.prod.mplat-ppcprotect.com
ASN | Amazon
connect-src Host Lunio logo Lunio
https://www.lunio.ai
ASN | Cloudflare
connect-src Host Snapchat logo Snapchat
https://tr.snapchat.com
ASN | Google Cloud
connect-src Host Snapchat logo Snapchat
https://tr-shadow.snapchat.com
ASN | Google Cloud
connect-src Host Snapchat logo Snapchat
https://tr6.snapchat.com
ASN | Google Cloud
connect-src Host
https://evnt.byspotify.com
ASN | Google Cloud
connect-src Host Spotify logo Spotify
https://pixels.spotify.com/v1/
ASN | Google Cloud
connect-src Host TikTok Analytics logo TikTok Analytics
https://analytics.tiktok.com
ASN | Akamai
connect-src Host Trustpilot logo Trustpilot
https://widget.trustpilot.com
ASN | Amazon
font-src Keyword
'self'
font-src Host
https://static-assets.monzo.com
ASN | Amazon
font-src Host
https://static-assets.monzo-s101.com
ASN | Amazon
font-src Host Amazon S3 logo Amazon S3
https://monzo-prod-s3bucketcreator-ffs-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
font-src Host Amazon S3 logo Amazon S3
https://monzo-s101-s3bucketcreator-ffs-nonprod-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
font-src Host Google Fonts logo Google Fonts
https://fonts.gstatic.com
ASN | Google
frame-ancestors Host Contentful logo Contentful
https://app.contentful.com
ASN | Amazon
frame-src Host Navattic logo Navattic
https://capture.navattic.com
ASN | Amazon
frame-src Host
https://community.monzo.com
ASN | Hurricane Electric
frame-src Host Facebook logo Facebook
https://www.facebook.com
ASN | Facebook
frame-src Host Facebook logo Facebook
https://connect.facebook.net
ASN | Facebook
frame-src Host Google Search logo Google Search
https://www.google.com
ASN | Google
frame-src Host Google DoubleClick logo Google DoubleClick
https://bid.g.doubleclick.net
ASN | Google
frame-src Host Google DoubleClick logo Google DoubleClick
https://*.doubleclick.net
ASN | Google
frame-src Host Google Tag Manager logo Google Tag Manager
https://www.googletagmanager.com
ASN | Google
frame-src Host Google DoubleClick logo Google DoubleClick
https://fls.doubleclick.net
ASN | Google
frame-src Host Snapchat logo Snapchat
https://tr.snapchat.com
ASN | Google Cloud
frame-src Host Snapchat logo Snapchat
https://tr-shadow.snapchat.com
ASN | Google Cloud
frame-src Scheme
bytedance:
frame-src Scheme
sslocal:
frame-src Host Trustpilot logo Trustpilot
https://widget.trustpilot.com
ASN | Amazon
frame-src Host Twitter logo Twitter
https://platform.twitter.com
ASN | Fastly
frame-src Host Vimeo logo Vimeo
https://player.vimeo.com
ASN | Cloudflare
frame-src Host YouTube logo YouTube
https://www.youtube.com
ASN | Google
frame-src Host YouTube logo YouTube
www.youtube-nocookie.com
ASN | Google
img-src Keyword
'self'
img-src Scheme
data:
img-src Host
https://api.monzo.com
ASN | Cloudflare
img-src Host
https://internal-api.monzo.com
ASN | Amazon
img-src Host
https://api.tools.s101.nonprod-ffs.io
img-src Host
https://public-images.monzo.com/
ASN | Cloudflare
img-src Host
https://static-assets.monzo.com
ASN | Amazon
img-src Host
https://static-assets.monzo-s101.com
ASN | Amazon
img-src Host Amazon S3 logo Amazon S3
https://monzo-prod-s3bucketcreator-ffs-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
img-src Host Amazon S3 logo Amazon S3
https://monzo-s101-s3bucketcreator-ffs-nonprod-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
img-src Host Contentful logo Contentful
https://images.ctfassets.net
ASN | Amazon
img-src Host
https://monzo.com
ASN | Amazon
img-src Host Imgix logo Imgix
https://monzo-prod-user-images.imgix.net
ASN | Fastly
img-src Host Imgix logo Imgix
https://monzo-nonprod-user-images.imgix.net
ASN | Fastly
img-src Host
https://api.s101.nonprod-ffs.io
ASN | Amazon
img-src Host
https://public-images.monzo.com
ASN | Cloudflare
img-src Host
https://monzo.com/static/images/
ASN | Amazon
img-src Host
https://www.monzo.com/static/images/
ASN | Amazon
img-src Host Microsoft Advertising logo Microsoft Advertising
https://bat.bing.com/action/0
ASN | Microsoft
img-src Host Microsoft Advertising logo Microsoft Advertising
https://bat.bing.net/action/0
ASN | Microsoft
img-src Host Contentful logo Contentful
https://images.contentful.com/
ASN | Amazon
img-src Host
https://tracking.audio.thisisdax.com
ASN | Amazon
img-src Host Facebook logo Facebook
https://www.facebook.com
ASN | Facebook
img-src Host Google DoubleClick logo Google DoubleClick
https://googleads.g.doubleclick.net
ASN | Google
img-src Host Google DoubleClick logo Google DoubleClick
https://stats.g.doubleclick.net
ASN | Google
img-src Host Google Search logo Google Search
https://www.google.com
ASN | Google
img-src Host
https://www.google.co.uk
ASN | Google
img-src Host Google DoubleClick logo Google DoubleClick
https://ad.doubleclick.net
ASN | Google
img-src Host Google Analytics logo Google Analytics
https://*.google-analytics.com
ASN | Google
img-src Host Google Static File Front End logo Google Static File Front End
https://ssl.gstatic.com
ASN | Google
img-src Host Google Static File Front End logo Google Static File Front End
https://www.gstatic.com
ASN | Google
img-src Host Google Tag Manager logo Google Tag Manager
https://*.googletagmanager.com
ASN | Google
img-src Host Google AdSense logo Google AdSense
https://*.googlesyndication.com
ASN | Google
img-src Host Google Analytics logo Google Analytics
https://*.analytics.google.com
ASN | Google
img-src Host Google DoubleClick logo Google DoubleClick
https://*.g.doubleclick.net
img-src Host
https://*.google.com
ASN | Google
img-src Host
https://*.google.co.uk
ASN | Google
img-src Host LinkedIn logo LinkedIn
https://px.ads.linkedin.com
ASN | Microsoft
img-src Host LinkedIn logo LinkedIn
https://px4.ads.linkedin.com
ASN | Microsoft
img-src Host LinkedIn logo LinkedIn
https://www.linkedin.com/px/li_sync
ASN | Cloudflare
img-src Host Google Conversion Tracking logo Google Conversion Tracking
https://www.googleadservices.com
ASN | Google
img-src Host
https://sc-static.net
ASN | Amazon
img-src Host TikTok Analytics logo TikTok Analytics
https://analytics.tiktok.com
ASN | Akamai
img-src Host YouTube logo YouTube
https://i.ytimg.com
ASN | Google
manifest-src Keyword
'self'
object-src Keyword
'none'
script-src Keyword
'self'
script-src Host
https://internal-api.monzo.com
ASN | Amazon
script-src Host
https://static-assets.monzo.com
ASN | Amazon
script-src Host
https://static-assets.monzo-s101.com
ASN | Amazon
script-src Host Amazon S3 logo Amazon S3
https://monzo-prod-s3bucketcreator-ffs-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
script-src Host Amazon S3 logo Amazon S3
https://monzo-s101-s3bucketcreator-ffs-nonprod-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
script-src Nonce
'nonce-a4da5778d19e5159aa923ea4ac49869ae84e'
script-src Keyword
'strict-dynamic'
script-src Host
https://community.monzo.com
ASN | Hurricane Electric
script-src Host
https://api.s101.nonprod-ffs.io
ASN | Amazon
script-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com/bat.js
ASN | Microsoft
script-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com/p/conversions/t/343187213
ASN | Microsoft
script-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com/p/conversions/s/0.8.45
ASN | Microsoft
script-src Host Microsoft Advertising logo Microsoft Advertising
bat.bing.com/p/action/343187213.js
ASN | Microsoft
script-src Host Facebook logo Facebook
https://connect.facebook.net
ASN | Facebook
script-src Host Facebook logo Facebook
https://staticxx.facebook.com
ASN | Facebook
script-src Host Google DoubleClick logo Google DoubleClick
https://googleads.g.doubleclick.net/pagead/viewthroughconversion/11481969694/
ASN | Google
script-src Host Google Analytics logo Google Analytics
https://www.google-analytics.com
ASN | Google
script-src Host Google AdSense logo Google AdSense
https://pagead2.googlesyndication.com/pagead/conversion/11481969694/
ASN | Google
script-src Host Google Conversion Tracking logo Google Conversion Tracking
https://www.googleadservices.com/pagead/conversion/11481969694/
ASN | Google
script-src Host Google AdSense logo Google AdSense
https://pagead2.googlesyndication.com/pagead/conversion/329248391/
ASN | Google
script-src Host Google Conversion Tracking logo Google Conversion Tracking
https://www.googleadservices.com/pagead/conversion/329248391/
ASN | Google
script-src Host Google Tag Manager logo Google Tag Manager
https://tagmanager.google.com
ASN | Google
script-src Host Google Tag Manager logo Google Tag Manager
https://www.googletagmanager.com
ASN | Google
script-src Host Greenhouse logo Greenhouse
https://api.greenhouse.io
ASN | Amazon
script-src Host LinkedIn logo LinkedIn
https://snap.licdn.com
ASN | Akamai
script-src Host
https://sc-static.net
ASN | Amazon
script-src Host Snapchat logo Snapchat
https://tr.snapchat.com/
ASN | Google Cloud
script-src Host
https://pixel.byspotify.com
ASN | Google Cloud
script-src Host TikTok Analytics logo TikTok Analytics
https://analytics.tiktok.com
ASN | Akamai
script-src Host Trustpilot logo Trustpilot
https://widget.trustpilot.com
ASN | Amazon
script-src Host Twitter logo Twitter
https://platform.twitter.com
ASN | Fastly
script-src Host YouTube logo YouTube
https://www.youtube.com/iframe_api
ASN | Google
script-src Host YouTube logo YouTube
https://www.youtube.com/s/player/
ASN | Google
style-src Keyword
'self'
style-src Host
https://static-assets.monzo.com
ASN | Amazon
style-src Host
https://static-assets.monzo-s101.com
ASN | Amazon
style-src Host Amazon S3 logo Amazon S3
https://monzo-prod-s3bucketcreator-ffs-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
style-src Host Amazon S3 logo Amazon S3
https://monzo-s101-s3bucketcreator-ffs-nonprod-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
style-src Keyword
'unsafe-inline'
style-src Host Google Tag Manager logo Google Tag Manager
https://tagmanager.google.com
ASN | Google
style-src Host Google Fonts logo Google Fonts
https://fonts.googleapis.com
ASN | Google
upgrade-insecure-requests Source
(no sources)
media-src Keyword
'self'
media-src Host
https://www.monzo.com/static/images/
ASN | Amazon
media-src Host
https://monzo.com/static/images/
ASN | Amazon
media-src Host
https://www.monzo.com/static/images/blog/
ASN | Amazon
media-src Host
https://monzo.com/static/images/blog/
ASN | Amazon
media-src Host Contentful logo Contentful
https://videos.ctfassets.net
ASN | Amazon
media-src Host Contentful logo Contentful
https://videos.contentful.com
ASN | Amazon
worker-src Keyword
'none'
report-uri Host Sentry logo Sentry
https://o23827.ingest.sentry.io/api/4505743602483200/security/?sentry_key=06894583d63658ed47fe4e9943f497fa&sentry_environment=production&sentry_release=3ce8a000b24764ba2a94ed7a057fea6cb6bc6f40
ASN | Google Cloud
default-src Host
https://static-assets.monzo.com
ASN | Amazon
default-src Host
https://static-assets.monzo-s101.com
ASN | Amazon
default-src Host Amazon S3 logo Amazon S3
https://monzo-prod-s3bucketcreator-ffs-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon
default-src Host Amazon S3 logo Amazon S3
https://monzo-s101-s3bucketcreator-ffs-nonprod-web-export.s3-eu-west-1.amazonaws.com
ASN | Amazon

Content-Security-Policy-Report-Only

No report-only CSP headers found.