indexo.dev

beecode.io

.io crawl

First seen 2026-05-21 · Last seen 2026-05-30 · ok HTTP/1.1 200 2522 ms crawled 2026-05-27

DE · 104.248.129.84 · AS14061 DigitalOcean, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
beecode – app & web development studio
Description
Vyvíjíme moderní mobilní a webové aplikace.
Generator
IS/beecode (no, this is not another wordpress page)

Open Graph

url
https://www.beecode.io
title
beecode
locale
cs_CZ
image:url
https://www.beecode.io/assets/images/cover.png
site name
beecode
description
Vyvíjíme moderní mobilní a webové aplikace.

Technology

CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • cloud.typenetwork.com×1
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.thinline.cz
  • ns2.thinline.cz
  • ns3.cesky-hosting.eu
MX
Show 6 MX records
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 15 mmogpegvg7cgl6gxzmqewf4zgrswgcpf5igpszlizyyx2oaj236q.mx-verification.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Brevo

Email authentication weak

SPF
not published
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopjhWgNPmhm41yQRfnnBlAdhb1t+x4l5jNURM7l/3c63rAqQMiRZ5ypCQN9cu8JeTytuinvpxKElYCrKAh…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqh2lltnV5Dl9mgTcrWIAq9EDGY80ru2XakiTQ5N2fo3z6/b6nB6gp7mFp1vDaHEVn1zjfbCnHV5XlaG7b…
selectors probed

Certificate (current)

E8
from 2026-05-04 to 2026-08-02
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.beecode.io/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' fonts.googleapis.com cloud.typenetwork.com 'unsafe-inline';connect-src stats.g.doubleclick.net 'self' *.google-analytics.com;script-src 'self' 'unsafe-inline' www.google-analytics.com www.googletagmanager.com www.google.com www.google.cz googleads.g.doubleclick.net www.googleadservices.com 'unsafe-eval';font-src 'self' fonts.gstatic.com cloud.typenetwork.com fastly-cloud.typenetwork.com;worker-src blob: 'self';child-src blob: 'self';img-src data: blob: 'self' www.beecode.io *.google-analytics.com www.google.com www.google.cz www.googletagmanager.com;base-uri 'self';form-action 'self';frame-ancestors 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
strict-transport-security
max-age=15552000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
require-corp
cross-origin-resource-policy
same-origin

Links to (8)

Linked from (2)