blindspot.ai

.ai crawl

First seen 2026-04-24 · Last seen 2026-05-14 · ok HTTP/1.1 200 4730 ms crawled 2026-05-18

DE · 18.158.120.141 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Homepage | Blindspot
Language: en

Open Graph

url: https://blindspot.ai
title: Homepage

Technology

Server: nginx

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (4)

px.ads.linkedin.com×2
www.googletagmanager.com×2
consent.cookiebot.com×1
www.facebook.com×1

Social

Contact

Email

contact@blindspot.ai

Address

Karolinská 706/3,186 00 Karlín, Prague,Czech Republic

Registration

Registrar

101domain GRS Limited

Created

2017-12-15

Expires

2027-02-01 258 days left

Updated

2024-12-04

Name servers

ns-1610.awsdns-09.co.uk
ns-480.awsdns-60.com
ns-1073.awsdns-06.org
ns-644.awsdns-16.net

DNS records

Email authentication strong

SPF

v=spf1 include:_spf.mlsend.com ip4:185.10.86.110 ip4:185.10.86.98 ip4:185.10.86.99 ip4:88.208.103.40 ip4:185.10.86.98/29 include:spf.mandrillapp.com include:_spf.google.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email,mailto:adastragroup@eu.cp-dmarc.com; ruf=mailto:dmarc_agg@vali.email,mailto:adastragroup@eu.cp-dmarc.com;

policy: quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9S7d2n7uxJ1I7O9cwXPk1YeHZOg8bR9RpVPZbnwgPPoHRTqdeGUaV8Pu23ux5N2myhKKLrav2GUGJ…
selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtn7fDVjBPy2bYRExBri95LLAEhRbelxxaYz0+4t2walg6vHCB8oib1IPGNibyMKvDrKfxjA2uk0Bs8…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

R12

from 2026-04-22 to 2026-07-21

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://blindspot.ai/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.google.com *.youtube.com *.audioboom.com *.cookiebot.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google-analytics.com *.facebook.net *.googletagmanager.com *.gstatic.com *.googleapis.com *.google.com *.tiny.cloud *.mailerlite.com *.mlcdn.com *.cookiebot.com; script-src-elem 'self' 'unsafe-inline' *.google.com *.googletagmanager.com *.facebook.net *.cookiebot.com *.mailerlite.com *.gstatic.com *.mlcdn.com *.tiny.cloud; style-src 'self' 'unsafe-inline' data: *.googleapis.com *.tiny.cloud *.mlcdn.com *.mailerlite.com; img-src 'self' blob: data: *.google-analytics.com *.facebook.com *.googleapis.com *.gstatic.com *.tinymce.com *.theabcdn.com; font-src 'self' 'unsafe-inline' data: *.gstatic.com *.googleapis.com *.mailerlite.com; object-src 'self'; connect-src 'self' *.google.com *.cookiebot.com *.google-analytics.com *.googleapis.com https://stats.g.doubleclick.net
strict-transport-security: max-age=63072000

Links to (4)

Linked from (1)

prg.ai×2