attendium.com

.com crawl

First seen 2026-04-25 · Last seen 2026-05-19 · ok HTTP/1.1 200 1697 ms crawled 2026-05-19

US · 18.165.122.43 · AS16509 Amazon.com, Inc.

Reputation 100/100

sector tech type app saas

HTML metadata

Title

The guest list app for event organizers

Description

A guest list app for event organizers to invite, manage & check in guests on any device.

Language

Canonical

https://attendium.com/

Translations

Open Graph

url: https://attendium.com/
site name: Attendium

Technology

CDN: Amazon CloudFront

Third-party hosts loaded (2)

attendiumfrontend.imgix.net×5
attendiumfiles.imgix.net×3

Registration

Registrar

Amazon Registrar, Inc.

Created

2010-07-30

Expires

2033-07-30 2627 days left

Updated

2026-05-16

Name servers

ns-1389.awsdns-45.org
ns-17.awsdns-02.com
ns-1937.awsdns-50.co.uk
ns-661.awsdns-18.net

DNS records live

NS

ns-1389.awsdns-45.org
ns-17.awsdns-02.com
ns-1937.awsdns-50.co.uk
ns-661.awsdns-18.net

MX

Show 7 MX records

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com
20 alt2.aspmx.l.google.com
30 aspmx2.googlemail.com
30 aspmx3.googlemail.com
30 aspmx4.googlemail.com
30 aspmx5.googlemail.com

Verified for

Apple
Google

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:amazonses.com include:user-spf.attendium.com -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=reject;rua=mailto:76cb8f3c0e@rua.easydmarc.eu;ruf=mailto:76cb8f3c0e@ruf.easydmarc.eu;fo=1;

policy: reject (enforced) · sp=reject

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/zW9Cs46qubEUYzFUbBv6WomviYXl5BpyrG19OE+4iC9jt6wif0E2PNkvqapEHsjjJPGRcaftROmhpqgKDo…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-04-02 to 2026-10-17

Expires in 149 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://attendium.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'none';base-uri 'none';object-src 'none';manifest-src 'self';script-src 'nonce-6d86bb89-5401-4da2-b3c8-7f5a5435ec91' 'strict-dynamic' https: http: 'unsafe-inline' https://maps.googleapis.com blob:;child-src 'self' https://intercom-sheets.com https://www.intercom-reporting.com https://www.youtube.com https://player.vimeo.com https://fast.wistia.net;worker-src 'self' blob:;style-src 'self' cdn.jsdelivr.net 'unsafe-inline';img-src 'self' data: https://attendiumfrontend.imgix.net https://attendiumfiles.imgix.net https://files.attendium.com *.ytimg.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.g.doubleclick.net *.doubleclick.net *.googlesyndication.com *.googleadservices.com *.google.com *.google.ad *.google.ae *.google.com.af *.google.com.ag *.google.al *.google.am *.google.co.ao *.google.com.ar *.google.as *.google.at *.google.com.au *.google.az *.google.ba *.google.com.bd *.google.be *.google.bf *.google.bg *.google.com.bh *.google.bi *.google.bj
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin

Links to (2)

apple.com×2
google.com×2