beanz.com

.com crawl

First seen 2026-05-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 5244 ms crawled 2026-05-20

US · 76.223.34.124 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

beanz.com | Coffee Subscription & Delivery - Grounds & Beans

Description

Enjoy fresh specialty coffee from craft roasters, delivered to your door. Taste the perfect cup of coffee with our selection of top roasts. Subscribe today!

Language

en-us

Canonical

https://www.beanz.com/en-us

Translations

en ×4
de
nl

Open Graph

url: https://www.beanz.com/en-us
title: beanz.com | Coffee Subscription & Delivery - Grounds & Beans
site name: Beanz
description: Enjoy fresh specialty coffee from craft roasters, delivered to your door. Taste the perfect cup of coffee with our selection of top roasts. Subscribe today!

Technology

CDN: Cloudflare
CMS: Next.js
JS framework: Next.js

Analytics

Cloudflare Insights

Third-party hosts loaded (4)

breville.scene7.com×49
assets-dam.foodthinkers.com×22
assets.breville.com×1
static.cloudflareinsights.com×1

Social

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2002-05-10

Expires

2027-05-10 354 days left

Updated

2026-05-06

Name servers

dns1.cscdns.net
dns2.cscdns.net

DNS records live

NS

dns1.cscdns.net
dns2.cscdns.net

MX

0 beanz-com.mail.protection.outlook.com
10 custmx.cscdns.net

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:amazonses.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:3d14d1e9094f357@rep.dmarcanalyzer.com; fo=1;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHanTYletcVzIU3cUNNPJ4FRCgezq/aQ/bQ7H4mBEovBK/Td1Z4fx4kpub0fEFRkCaSuWM7HmmhSgq…

selectors probed

Certificate (current)

R12

from 2026-03-28 to 2026-06-26

Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.beanz.com/en-us

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval'; worker-src blob:; child-src * blob: gap:; img-src * 'self' blob: data: https:; script-src * 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval'; script-src-elem * 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval'; script-src-attr * 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval'; style-src * 'unsafe-inline' 'unsafe-hashes'; style-src-elem * 'unsafe-inline' 'unsafe-hashes'; style-src-attr * 'unsafe-inline' 'unsafe-hashes'; font-src * 'self' data: https:; connect-src *; media-src *; object-src *; base-uri *; frame-ancestors 'self' *.blueconic.net https://app.contentful.com
strict-transport-security: max-age=31536000; includeSubDomains

Links to (4)

Linked from (1)

londoncoffeefestival.com×1