bloomstories.com

HTML metadata

Technology

CDN

Netlify

CMS

Next.js

Third-party hosts loaded (1)

• storage.googleapis.com×53

Social

• instagram
• youtube
• tiktok

Registration

Registrar

TurnCommerce, Inc. DBA NameBright.com

Created

2016-03-03

Expires

2032-03-03 2115 days left

Updated

2024-02-07

Name servers

• dns1.p02.nsone.net
• dns2.p02.nsone.net
• dns3.p02.nsone.net
• dns4.p02.nsone.net

DNS records live

NS

• dns1.p02.nsone.net
• dns2.p02.nsone.net
• dns3.p02.nsone.net
• dns4.p02.nsone.net

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

• google-site-verification=gOuPO2vCEAJqplsJDEswRcaODmdygG5QOOdl9z1nK6c
• google-site-verification=V-Rc_wHZnXHCCWWNYqK0AeFRfi3q8yZIwAweL1oqYeo
• facebook-domain-verification=30mfyciixo4wilidtb3swdvhb7x91h
• firebase=audiodesires-aab7f

Email authentication partial

SPF

v=spf1 include:_spf.firebasemail.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.bloomstories.com/

present

• strict-transport-security
• x-content-type-options

findings

• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (5)

• apple.com×4
• google.com×4
• instagram.com×4
• tiktok.com×4
• youtube.com×4

Linked from (2)

• manwhorepod.com×3
• dswrights.de×2