indexo.dev

blackduck.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1095 ms crawled 2026-05-18

US · 104.18.38.192 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Application Security | Open Source Security | SAST/DAST/SCA Tools | Black Duck
Description
Black Duck helps organizations secure their software supply chain by providing deep visibility into open source components, licenses, and vulnerabilities. Black Duck solutions help ensure compliance, accelerate development, provide clarity into AI coding, and prevent costly security events.
Language
en
Canonical
https://www.blackduck.com/
Translations
  • en-us
  • ja-jp

Open Graph

url
https://www.blackduck.com/
title
Application Security | Open Source Security | SAST/DAST/SCA Tools | Black Duck
description
Black Duck helps organizations secure their software supply chain by providing deep visibility into open source components, licenses, and vulnerabilities. Black Duck solutions help ensure compliance, accelerate development, provide clarity into AI coding, and prevent costly security events.

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (4)

  • assets.adobedtm.com×1
  • cdn.cookielaw.org×1
  • kit.fontawesome.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1997-05-21
Expires
2030-01-01 1322 days left
Updated
2025-12-01
Name servers
  • ns0.dnsmadeeasy.com
  • ns1.dnsmadeeasy.com

DNS records live

NS
  • ns0.dnsmadeeasy.com
  • ns1.dnsmadeeasy.com
  • ns2.dnsmadeeasy.com
  • ns3.dnsmadeeasy.com
  • ns4.dnsmadeeasy.com
MX
  • 10 blackduck-com.mail.protection.outlook.com
TXT
Show 17 TXT records
  • apple-domain-verification=sIzhNXmkIxsVdYxU
  • neat-pulse-domain-verification-7M1lBRX=0a7e8c52-25ec-4631-9da7-7676175bb382
  • google-gws-recovery-domain-verification=56376261
  • postman-domain-verification=99a1f29f96ad26f118ac5112610221dc042213dbd3a6a05292ba0e3fcf6e75a263033136c9a34a90a68126293b44ec6cfd7252f453d2e2d97dec39c4d9f25fcd
  • MS=ms22819795
  • jetbrains-domain-verification=3drzplo318rpsu76me638vtbv
  • google-site-verification=Euh3nf9zCUIv0Foo25Pddp07QYubfBWicbre-HQRzGk
  • new-relic-domain-verification=5561999d9e2f41e8838830b85d00c000
  • atlassian-domain-verification=GqyibgPiaXhOERsot4TRzihsTmsusxwuzsX5lOONRQCMVDaAa2gXQ4PoR/W8za/N
  • jamf-site-verification=ZOis-yL9s99IbhdiUpDHbQ
  • anthropic-domain-verification-szzs8x=NevL0HC6rgcJg4VzZT48Wr8Vu
  • atlassian-domain-verification=ERQGj3m0yJJNdWHguGYiKIvWSPbcE5n0EntUhRaDlJEXVWNodORcDBKpbPe4atmk
  • google-site-verification=Ydo-NBCjNifIGZ7cgcEr_v-j_Rm3ADuMF0dJ9gVwGWA
  • google-site-verification=PiVgR0EV92zpLLwSj-J1y-CgS6t3hynxIRvNv_tE0O4
  • v=MCPv1; k=ed25519; p=h2d3YR5txSAoca73tcA920N9PXo713Uw/dVAukyrPvg=
  • google-site-verification=pOXGDzu8MIjL16aMWfp9Fb8tCvsUEo80tcxlkTbTlgA
  • linkedin-site-verification=906c3ff9-f2ee-4220-8e38-98f9cd791895

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:mktomail.com include:_spf.salesforce.com include:mail.zendesk.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email;
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDmzBwHa8OyYSRPkDYsttb1xpHyk4OVWAMNNKevZPmx2Fxu31T9YbrFl7Zv4e7Nh/WOwTWkwA5SEjU…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqybVJc9MiYbeWSqcm5gR1GsG5f7cxPHMRJ5o4kyWW0CKLwi2BT1ELYzWve5BeqsZ1n+CrSZ0PALUHDLxeS…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3U8MAab1soX1Vq+GSlaDJgjFbd5LTWUbuTZ94Ssut4YRJzwCa0ycD1cwLwpHHPrTI/gk7bjiygXVq3fIM…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA OV R36
from 2025-09-11 to 2026-09-12
Expires in 115 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.blackduck.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-hashes' 'unsafe-inline' 'unsafe-eval' data: blob: wss: https: edge.adobedc.net adobedc.demdex.net *.adobe.com *.adobe.io cdn.cookielaw.org assets.adobedtm.com kit.fontawesome.com ka-p.fontawesome.com munchkin.marketo.net adobedc.demdex.net snap.licdn.com *.drift.com js.driftt.com js.zi-scripts.com j.6sc.co geolocation.onetrust.com ipv6.6sc.co c.6sc.co b.6sc.co epsilon.6sense.com px.ads.linkedin.com static.cloud.coveo.com boards.greenhouse.io *.mktoresp.com *.zoominfo.com job-boards.greenhouse.io api.company-target.com *.org.coveo.com synopsysnonproduction2yln023as.analytics.org.coveo.com *.brighttalk.com brighttalk.com js.zi-scripts.com *.blackduck.com blackduck.com players.brightcove.net *.brightcove.com manifest.prod.boltdns.net *.brightcovecdn.com googletagmanager.com *.googletagmanager.com *.google.com *.google.ca *.google.co.uk google.co.in google.com *.google-analytics.com google-analytics.com googleads.g.doubleclick.net td.doubleclick.net *.googleapis.
strict-transport-security
max-age=31536000

Links to (7)

Linked from (3)