indexo.dev

boring.co

.co crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1506 ms crawled 2026-05-19

CA · 23.227.38.65 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
365-Night Trial, Free Returns – Boring Mattress
Description
Finally, a mattress you can stop thinking about. Wake up without the aches, stay cool all night. Try it 365 nights—free shipping, free returns.
Language
en
Canonical
https://www.boring.co/

Open Graph

url
https://www.boring.co/
title
365-Night Trial, Free Returns
site name
Boring Mattress
description
Finally, a mattress you can stop thinking about. Wake up without the aches, stay cool all night. Try it 365 nights—free shipping, free returns.

Technology

CDN
Cloudflare
CMS
Shopify
Third-party hosts loaded (9)
  • cdn.shopify.com×13
  • assets.calendly.com×2
  • shop.app×2
  • api.judge.me×1
  • cdn.judge.me×1
  • cdn1.judge.me×1
  • monorail-edge.shopifysvc.com×1
  • stores.enzuzo.com×1
  • unpkg.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • alice.ns.cloudflare.com
  • camilo.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 4 TXT records
  • facebook-domain-verification=2t1vjrleyoj8oiwpkv0gckugvr9mmi
  • google-site-verification=emJsEkxW4kGdaj8-1Qna2l5ZiXJDSF4tm2ydV46ovuc
  • 1password-site-verification=HIG3Q3V7TVBYPF5LD3I5X5AX5Y
  • apple-domain-verification=-OCesMSrbykWssPAKYX5fRogqRalaWFKtkWPjIsBcV8

Email authentication strong

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1;p=reject;pct=100;rua=mailto:dde6afdc00414ef8941ba24823d8e35b@dmarc-reports.cloudflare.net
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgXK4WMhAbpiRX9TBA1wTqaNwR8AaOqAIDsx/o1Iun1YtK3h3UT6KsekWtKsMwNSEveEFT38ZRoCGpV…
selectors probed

Certificate (current)

E8
from 2026-04-19 to 2026-07-18
Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.boring.co/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security
max-age=7889238

Links to (7)

Linked from (2)