indexo.dev

boxmark.com

.com crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 451 ms crawled 2026-06-02

DE · 136.243.160.108 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
BOXMARK - Best in Leather Interior
Description
Welcome to BOXMARK, your knowledgeable partner for high-quality upholstery leather, completed seat covers and leather-wrapped components for exclusive in- and outdoor...

Technology

Server
Apache
jQuery
1.11.2 known XSS (<3.5)
Stack
PHP
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts

Third-party hosts loaded (2)

  • use.typekit.net×2
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
Ascio Technologies, Inc. Danmark - Filial af Ascio technologies, Inc. USA
Created
1999-12-08
Expires
2026-12-08 186 days left
Updated
2025-12-09
Name servers
  • dns1.a1.net
  • dns2.a1.net
  • dns3.a1.net

DNS records live

NS
  • dns1.a1.net
  • dns2.a1.net
  • dns3.a1.net
MX
  • 10 mail.boxmark.com
  • 5 fm.boxmark.com
TXT
Show 6 TXT records
  • ddbt0blgiohp70247kq943ncrg
  • djcuesocii3jrrn3h51615udle
  • lq326a59ap8v778r7mqjf2d1pp.
  • oRQKjSNmOEUCeyVzOvluxv92n7zaMX58D0EhURAiAzQ78kuH2KL29un9ZXUhPDZkWp6ys9U4QBI7vwO36K8dPQ==
  • tp9jcknuppq2k734p6kal70glr
  • 3i4mmqoqdvfpo4u9bjjbqeqeok

Email authentication weak

SPF
v=spf1 a mx ip4:136.243.160.108 ip4:200.5.225.251 ip4:200.41.185.251 ip4:190.104.222.84 ip4:170.150.153.200 ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2026-04-15 to 2026-07-06
Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.boxmark.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:;
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (7)

Linked from (1)