Content-Security-Policy Analysis for https://support.okgtech.com

Open Cached · just now

8 directives

Content-Security-Policy

Content-Security-Policy: frame-ancestors 'self' blob: *.myconnectwise.net *.connectwisedev.com *.itboost.com; default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.walkme.com *.connectwise *.connectwise.com az416426.vo.msecnd.net dc.services.visualstudio.com/v2/track *.connectwisedev.com *.myconnectwise.net cwview.com *.cwview.com *.cwnet.io *.wise-pay.com *.wise-sync.com;style-src 'self' 'unsafe-inline' fonts.googleapis.com files.connectwise.com *.itsupport247.net *.myconnectwise.net; font-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.walkme.com *.connectwise.com *.googleapis.com; img-src * data: snapshot:; frame-src * data: mailto:; connect-src 'self' *.walkme.com *.connectwise.com *.connectwisedev.com *.myconnectwise.net *.itsupport247.net cwview.com *.cwview.com *.cwnet.io dc.services.visualstudio.com/v2/track cheetah quotewerks://* wss://*.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.connectwise.com *.connectwisedev.com *.myconnectwise.net cwview.com *.cwview.com *.walkme.com *.cwnet.io *.itsupport247.net

frame-ancestors Keyword —

'self'

frame-ancestors Scheme —

blob:

frame-ancestors Host —

*.myconnectwise.net

ASN | CenturyLink

frame-ancestors Host —

*.connectwisedev.com

frame-ancestors Host —

*.itboost.com

ASN | EPISERVER_AS - Optimizely AB

default-src Keyword —

'self'

default-src Keyword —

'unsafe-inline'

default-src Keyword —

'unsafe-eval'

default-src Scheme —

blob:

default-src Host —

*.walkme.com

ASN | Automattic

default-src Host —

*.connectwise

default-src Host —

*.connectwise.com

ASN | EPISERVER_AS - Optimizely AB

default-src Host

Microsoft Azure

az416426.vo.msecnd.net

ASN | Microsoft

default-src Host —

dc.services.visualstudio.com/v2/track

ASN | Microsoft

default-src Host —

*.connectwisedev.com

default-src Host —

*.myconnectwise.net

ASN | CenturyLink

default-src Host —

cwview.com

default-src Host —

*.cwview.com

default-src Host —

*.cwnet.io

default-src Host —

*.wise-pay.com

default-src Host —

*.wise-sync.com

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host

Google Fonts

fonts.googleapis.com

style-src Host —

files.connectwise.com

style-src Host —

*.itsupport247.net

style-src Host —

*.myconnectwise.net

ASN | CenturyLink

font-src Keyword —

'self'

font-src Keyword —

'unsafe-inline'

font-src Keyword —

'unsafe-eval'

font-src Scheme —

data:

font-src Host —

*.walkme.com

ASN | Automattic

font-src Host —

*.connectwise.com

ASN | EPISERVER_AS - Optimizely AB

font-src Host

Google API JS Client

*.googleapis.com

img-src Host —

*

img-src Scheme —

data:

img-src Scheme —

snapshot:

frame-src Host —

*

frame-src Scheme —

data:

frame-src Scheme —

mailto:

connect-src Keyword —

'self'

connect-src Host —

*.walkme.com

ASN | Automattic

connect-src Host —

*.connectwise.com

ASN | EPISERVER_AS - Optimizely AB

connect-src Host —

*.connectwisedev.com

connect-src Host —

*.myconnectwise.net

ASN | CenturyLink

connect-src Host —

*.itsupport247.net

connect-src Host —

cwview.com

connect-src Host —

*.cwview.com

connect-src Host —

*.cwnet.io

connect-src Host —

dc.services.visualstudio.com/v2/track

ASN | Microsoft

connect-src Host —

cheetah

connect-src Host —

quotewerks://*

connect-src Host

AWS

wss://*.amazonaws.com

script-src Keyword —

'self'

script-src Keyword —

'unsafe-inline'

script-src Keyword —

'unsafe-eval'

script-src Host —

*.connectwise.com

ASN | EPISERVER_AS - Optimizely AB

script-src Host —

*.connectwisedev.com

script-src Host —

*.myconnectwise.net

ASN | CenturyLink

script-src Host —

cwview.com

script-src Host —

*.cwview.com

script-src Host —

*.walkme.com

ASN | Automattic

script-src Host —

*.cwnet.io

script-src Host —

*.itsupport247.net

Content-Security-Policy-Report-Only

No report-only CSP headers found.