indexo.dev

brasstrains.com

.com crawl

First seen 2026-06-02 · Last seen 2026-06-03 · ok HTTP/1.1 200 1241 ms crawled 2026-06-03

US · 66.192.101.188 · AS25642 The Frohman Group Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Shop Brass Model Trains in HO, O, N, and G Scales
Description
Brass Model Trains for HO Scale Collectors – W&R, Precision Scale, Division Point, Overland Models, Glacier Park, Coach Yard – Buy, Sell, Consignment.

Technology

Analytics
  • Google Tag Manager
Social widgets
  • YouTube Embed

Third-party hosts loaded (3)

  • www.googletagmanager.com×1
  • www.paypalobjects.com×1
  • www.youtube.com×1

Social

Contact

Email
Phone

Registration

Registrar
GoDaddy.com, LLC
Created
1996-10-22
Expires
2034-10-21 3054 days left
Updated
2025-07-17
Name servers
  • ns1.spiderhost.com
  • ns2.spiderhost.com
  • ns3.spiderhost.net

DNS records live

NS
  • ns1.spiderhost.com
  • ns2.spiderhost.com
MX
  • 10 mx.spamexperts.com
  • 20 fallbackmx.spamexperts.eu
  • 30 lastmx.spamexperts.net
Verified for
  • Microsoft 365

Email authentication weak

SPF
v=spf1 ip4:66.128.57.34 ip4:66.192.101.188 ~all
softfail (~all)
DMARC
not published
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XkwI2gbjrcKLvBHza1X9VtJ+z+7QjHXcFwkgEzPXiNb7cCULFFimJTRyHoxVdY4x58PkL04XVfbaGZ1++…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDSN4XdmI9qWwIA5ODx6IlelEAKIOOmVccuxyReLfHYgMGAB6MaN7Jts0pi7tivi+e33DYd7zU2a8oCkEU2CSDt5J…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2026-01-06 to 2027-02-07
Expires in 241 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://brasstrains.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://*.zopim.com https://*.zopim.io wss://*.zopim.com;connect-src 'self' https://www.sandbox.paypal.com https://www.paypal.com https://www.google-analytics.com https://links.services.disqus.com wss://localhost wss://*.zopim.com https://static.zdassets.com https://ekr.zdassets.com https://brasstrains.sirv.com https://brasstrains.zendesk.com;font-src 'self' https://fonts.gstatic.com https://*.zopim.com https://fonts.gstatic.com data:;frame-src https://www.paypal.com https://www.sandbox.paypal.com https://www.youtube.com https://www.facebook.com https://apis.google.com https://accounts.google.com https://www.google.com https://brasstrains.sirv.com https://livestream.com https://disqus.com https://secure.comodo.com;img-src 'self' data: https://test-images.brasstrains.com https://t.paypal.com https://brasstrains.sirv.com https://badges.instagram.com https://instagramstatic-a.akamaihd.net https://ssl.google-analytics.com https://assets.pinterest.com https://www.paypal.c
strict-transport-security
max-age=31536000

Links to (4)

Linked from (1)

Use this data via API

Everything on this page for brasstrains.com is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/brasstrains.com" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →