indexo.dev

annex.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-11 · ok HTTP/1.1 200 562 ms crawled 2026-05-07

US · 216.24.57.1 · AS397273 Render

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Purchase Off-Site Document Storage and Secure Destruction Services
Description
Discover the ease of off-site records management. Start storing your physical records and managing secure destruction today and reveal unlimited possibilities.
Language
en

Open Graph

title
Purchase Off-Site Document Storage and Secure Destruction Services
description
Discover the ease of off-site records management. Start storing your physical records and managing secure destruction today and reveal unlimited possibilities.

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • www.googletagmanager.com×2
  • 86e66ac4ebb640b29e6a6a1de54b8d03.js.ubembed.com×1
  • js.hs-scripts.com×1
  • px.ads.linkedin.com×1

Social

Contact

Phone

Registration

Registrar
GoDaddy.com, LLC
Created
1993-07-19
Expires
2026-07-18 60 days left
Updated
2025-07-18
Name servers
  • ns73.domaincontrol.com
  • ns74.domaincontrol.com

DNS records live

NS
  • ns73.domaincontrol.com
  • ns74.domaincontrol.com
MX
  • 0 annex-com.mail.protection.outlook.com
TXT
Show 4 TXT records
  • openai-domain-verification=dv-brLJhUfr5PA10ZOGbeOnr9iM
  • amazonses:EAEpdW/CThgvo1q1TMhd4X+UGp+3aL/F877Xft+PfVs=
  • atlassian-domain-verification=qm3owsKRlINrkt1Qf0FulBpwfL6mB/LqVNZ7/3DG212M9rcdbHxetLonbcpuCCSt
  • google-site-verification=GP8kXNX8WkoE5WrNvGb1_5wZ6FcNGkuFmjGOfoiI-R0

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com include:7693215.spf05.hubspotemail.net -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:itdept@oneilsoftware.com; ruf=mailto:itdept@oneilsoftware.com; fo=1
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsfEvPCUz+kHUSohhm1guMI/npLTQiKrFFF2MTB/W71CCGNHc6HC/K6+tzhQHvtpZo2e3meAtqdCkX…
selectors probed

Certificate (current)

WE1
from 2026-03-23 to 2026-06-21
Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://annex.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
content-security-policy
default-src 'self'; script-src 'nonce-YzhiMThlYTktMGI0Mi00MWY3LTk0YmUtNzYwNGFkZDBhMTQx' 'strict-dynamic' ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com *.hubspotusercontent-na1.net; img-src 'self' blob: data: http://nebula-directus-production.onrender.com http://cms.annex.com https://nebula-directus-production.onrender.com https://cms.annex.com https://lh3.ggpht.com *.bbb.org https://*.google-analytics.com https://*.googletagmanager.com https://*.googleapis.com https://*.gstatic.com *.google.com *.googleusercontent.com *.linkedin.com *.licdn.com *.hsforms.com *.hubspot.com *.hubspotusercontent-na1.net *.vimeocdn.com *.doubleclick.net *.kickfire.com; font-src 'self' https://fonts.gstatic.com; object-src 'none'; base-uri 'self'; form-action 'self' *.hsforms.com; frame-ancestors 'none'; frame-src 'self' *.hubspot.com *.hsforms.com *.hsforms.net https://player.vimeo.com https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/ https://*.js.stripe.com https:
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (6)

Linked from (2)