indexo.dev

better.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-20 · ok HTTP/1.1 200 274 ms crawled 2026-05-19

US · 3.164.206.50 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Simple, Online, AI-Powered Mortgage | Better Mortgage
Description
Better Mortgage Corporation is a direct lender dedicated to providing a fast, transparent digital mortgage experience backed by superior customer support.
Language
en
Canonical
https://better.com

Open Graph

title
Simple, Online, AI-Powered Mortgage | Better Mortgage
locale
en_US
site name
Better Mortgage
video:url
https://www.youtube.com/embed/XdjCl1GaDJI
video:type
text/html
description
Better Mortgage Corporation is a direct lender dedicated to providing a fast, transparent digital mortgage experience backed by superior customer support.
video:width
1280
video:height
720
video:secure url
https://www.youtube.com/embed/XdjCl1GaDJI

Technology

CDN
Amazon CloudFront
CMS
Next.js

Contact

Phone
Address
1 World Trade Center, 80th Floor, 10007, New York, NY, US

Registration

Registrar
NameCheap, Inc.
Created
1996-11-20
Expires
2026-11-19 182 days left
Updated
2025-10-21
Name servers
  • ns-1191.awsdns-20.org
  • ns-1605.awsdns-08.co.uk
  • ns-441.awsdns-55.com
  • ns-845.awsdns-41.net

DNS records live

NS
  • ns-1191.awsdns-20.org
  • ns-1605.awsdns-08.co.uk
  • ns-441.awsdns-55.com
  • ns-845.awsdns-41.net
MX
  • 0 better-com.mail.protection.outlook.com
TXT
Show 4 TXT records
  • virtru-site-verify=HfaB3JlMTDfabHpWbK2Ql35a6kIRyk3gACKmrAGC
  • box-domain-verification=f5e7f814526cdef8f788e5124d8cf726ef9203ca4a283df6e8a7743923adae78
  • calendly-site-verification=fZVybdiFoLIbl8SaA1wDrEa5XOsMhJLXHoVoq3XJ8
  • _w45k2dwvxa3pbwj15n0oc537r1u83ie
Verified for
  • Ahrefs
  • Anthropic
  • Apple
  • Atlassian
  • Bugcrowd
  • Canva
  • Google
  • Meta
  • Microsoft 365
  • Miro
  • OpenAI
  • Segment
  • Slack
  • TeamViewer
  • Twilio
  • Zoom

Email authentication strong

SPF
v=spf1 include:better.com._nspf.vali.email include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; sp=quarantine; pct=100; adkim=r; aspf=r; rua=mailto:dmarc_agg@vali.email,mailto:rua@better.com
policy: quarantine · sp=quarantine
DKIM
Show 8 DKIM selectors
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCFtMWCLePvsnnueZz/67SemCFgym6wSeM0mlH4DDqRj3GI4ORkPi5Bxqbtem28mWqeFA6CYX8WB7GB68uzIl…
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCOVDOyscuom1bXymq4AdSSHUOWaRvlsE6CYHhXw7gpDS/oelNhrvJGN9hbkPD993+rJAY/pD41RatnujFJ2t…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Hohw06CWoGvSaI8516EaMiOIYOJSC2Xg8W0lS4qkeRMvDgRlCzElwpIXliE/buKdmIvrkS2VFerSh…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28M+bZHwgiteBk8FpZcN5OIk992+VtG2Tyx7fELKEqqziBxExn2KGMNWN4IAk9oVY/RWVvWbRgWkdFDaEO…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHVdvTfVDX/ZQjh4q31fWoa8wyWfznJcj94ahV1tdvq5xMc73nisf3w+KZRH6kvMUg3uORBx7oYDonoJxi3+Xe6O…
  • smtpapi: v=DKIM1; k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprz…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2025-11-07 to 2026-12-07
Expires in 200 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://better.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' media.better.com; connect-src wss://*.wss.daily.co wss://*.twilio.com wss://*.ably.io wss://*.ably-realtime.com wss://*.pusher.com wss://*.pusherapp.com *.ably.io *.ably-realtime.com *.pusherapp.com https: 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; frame-ancestors 'self' https://mobile2.accountchek.net https://borrower.accountchek.com https://web.pointserv.com https://flex.twilio.com https://builder.io https://*.frontapplication.com https://*.followupboss.com https://better-mortgage.frontapp.com https://better.frontapp.com https://better.com https://*.better.com; frame-src https://*.hellosign.com https://accounts.google.com https://assets.braintreegateway.com https://cdn.plaid.com https://useast1.pcipal.cloud/ bid.g.doubleclick.net dntcl.qualaroo.com insight.adsrvr.org match.adsrvr.org player.vimeo.com www.google.com 'self' https: https://better.com https://*.better.com https://consent.trustarc.com; img-src data: https: 'self' *.better.com images
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (1)

Linked from (4)