indexo.dev

alluresecurity.com

.com crawl

First seen 2026-05-02 · Last seen 2026-05-09 · ok HTTP/1.1 200 3471 ms crawled 2026-05-09

US · 199.16.172.92 · AS2635 Automattic, Inc

Reputation 100/100

Classifying

HTML metadata

Title
Brand Protection & Phishing Takedown Services - Allure Security
Description
AI-powered brand protection against phishing, deepfakes, and impersonation. Managed takedownswith ~15 min blocking. 24/7 SOC. 340K+ threats eliminated.
Language
en-US
Generator
Site Kit by Google 1.175.0
Canonical
https://alluresecurity.com/
Feeds

Open Graph

url
https://alluresecurity.com/
title
Brand Protection & Phishing Takedown Services
locale
en_US
site name
Allure Security
description
AI-powered brand protection against phishing, deepfakes, and impersonation. Managed takedownswith ~15 min blocking. 24/7 SOC. 340K+ threats eliminated.

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (5)

  • i0.wp.com×32
  • stats.wp.com×2
  • c0.wp.com×1
  • js.hs-scripts.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
DreamHost, LLC
Created
2009-06-16
Expires
2026-06-16 27 days left
Updated
2025-04-29
Name servers
  • a1-1.akam.net
  • a16-64.akam.net
  • a28-65.akam.net
  • a4-66.akam.net

DNS records live

NS
  • a1-1.akam.net
  • a13-66.akam.net
  • a16-64.akam.net
  • a28-65.akam.net
  • a4-66.akam.net
  • a9-65.akam.net
MX
  • 0 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 8 TXT records
  • google-site-verification=Ao-ZDEqTtUpBcOesU21KkKRXUaJbr_1df1c416PKHzQ
  • MS=ms10504717
  • google-site-verification=LUr-iZOPCuXkTL2eBG4ZTASp2vypS6gB0KuPaeqZYmQ
  • google-site-verification=9HSp2wvTmTbnJobO4AHP3Nm0adgjLgP3MiBVgfoMw6Y
  • zoho-verification=zb34745530.zmverify.zoho.com
  • google-site-verification=qrwbccRcmXil3R-RxmnZPkss3XwTHMwCpa_ac0dtcEc
  • A27BBA0322
  • 71t39t16qb2na1hhdr7pnlmq8u

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:amazonses.com include:4039079.spf05.hubspotemail.net include:sendgrid.net include:fdspfus.freshemail.io ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; sp=reject; rua=mailto:aef02b08@mxtoolbox.dmarc-report.com,mailto:dmarcreports@mxtoolbox.com,mailto:dmarc@alluresecurity.com; ruf=mailto:aef02b08@forensics.dmarc-report.com
policy: quarantine · sp=reject
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhH5C4uKYjAq2aqKBrwmmBC4oFDEHxb+HiCUcwkqROO4Yx7KCpufG6vH+AZU952UywPHkzmhC88sQKE…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

E8
from 2026-03-26 to 2026-06-24
Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://alluresecurity.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; block-all-mixed-content; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data: blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https:; img-src 'self' data: blob: https:; font-src 'self' data: https://fonts.gstatic.com https:; connect-src 'self' https: wss:; frame-src 'self' https: https://www.youtube.com https://player.vimeo.com https://js.hsforms.net https://forms.hsforms.com; media-src 'self' https:; manifest-src 'self'; worker-src 'self' blob:; form-action 'self' https://forms.hsforms.com https://app.hubspot.com;
strict-transport-security
max-age=31536000

Links to (3)

Linked from (1)