bondlayer.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-14 · ok HTTP/1.1 200 1666 ms crawled 2026-05-14

DE · 157.245.27.75 · AS14061 DigitalOcean, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Bondlayer – Free Websites and native apps without coding

Description

Build for free and only pay to launch – start building your own responsive website and native app with the best no code tool online.

Language

Canonical

https://www.bondlayer.com/

Translations

en
pt-br

Open Graph

url: https://www.bondlayer.com/
title: Bondlayer – Free Websites and native apps without coding
description: Build & launch without coding The #nocode tool to create your native apps & websites

Technology

CDN: Cloudflare
Server: openresty
CMS: Joomla

Analytics

Google Analytics
Google Tag Manager

Ads

Meta Pixel

Fonts

Google Fonts

Third-party hosts loaded (6)

cdn.bndlyr.com×10
img.bndlyr.com×3
connect.facebook.net×1
fonts.gstatic.com×1
www.google-analytics.com×1
www.googletagmanager.com×1

Social

Contact

Email

info@bondlayer.com

Registration

Registrar

Cloudflare, Inc.

Created

2014-01-28

Expires

2027-01-28 254 days left

Updated

2025-01-03

Name servers

janet.ns.cloudflare.com
kip.ns.cloudflare.com

DNS records live

NS

janet.ns.cloudflare.com
kip.ns.cloudflare.com

MX

10 mx.zoho.eu
20 mx2.zoho.eu
50 mx3.zoho.eu

TXT

zoho-verification=zb95532647.zmverify.zoho.eu
google-site-verification=a_W32ToFVP-wPoSwm7J9PhsSP10TOB0JQ9xiSHMWCvY

Email authentication partial

SPF

v=spf1 include:zohomail.eu include:_spf.mlsend.com include:amazonses.com include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:f370bbe66e364cbd835ba6bdbbdc5def@dmarc-reports.cloudflare.net,mailto:re+q6jtfjjb5sg@dmarc.postmarkapp.com; sp=none; aspf=r;

policy: none (monitoring only) · sp=none

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhsz9yn4t3VGP4rC4E9deV+jsk9WPUU8X9vA5PHL7bpyC0c9EPBNXFrNPElEihaTrMTKpC+usuhb0lv…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

R12

from 2026-03-21 to 2026-06-19

Expires in 31 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.bondlayer.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(self),microphone=(self),camera=(self),autoplay=(self),picture-in-picture=(self)
x-content-type-options: nosniff
content-security-policy: manifest-src *; default-src 'self' blob:; media-src * data: blob:; frame-ancestors 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob: data:; img-src * 'self' data: blob: https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' data: https:; frame-src *; connect-src https: wss:; object-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (6)

Linked from (1)

bondhabits.com×2