brocebroomparts.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-13 · ok HTTP/1.1 200 3063 ms crawled 2026-05-15

US · 76.223.30.32 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Store | Broce Broom eStore
Description: Home Page
Language: en

Technology

Server: Apache

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (7)

cdn.genalpha.com×26
cdnjs.cloudflare.com×9
cdn.datatables.net×2
cdn.jsdelivr.net×2
www.googletagmanager.com×2
bowercdn.net×1
consent.cookiebot.com×1

Contact

Phone

3602026.5.0

Registration

Registrar

GoDaddy.com, LLC

Created

2020-03-25

Expires

2028-03-25 676 days left

Updated

2026-03-26

Name servers

ns07.domaincontrol.com
ns08.domaincontrol.com

DNS records live

NS

ns07.domaincontrol.com
ns08.domaincontrol.com

TXT

Show 6 TXT records

google-site-verification=oQT6vCrlH7OANiAzXKf1xHW99JouDB4YH72E2Vl5c4Q
u4ntg73je9rrkv5tdgnq7jmmu
vjkq249f7a9sh7i3pv6v4p7glb
l17ns9lhuagtan9avcpg8hp2m2
amazonses:HDZrsBa+dVG0sLCyNLtIikevCAiEOCGzqFNlGB5Xhlw=
ek26b3gu2jt929m53n6lg33vs3

Email authentication no MX

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2026-01-04 to 2027-01-06

Expires in 233 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://brocebroomparts.com/store

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' https://www.clarity.ms https://scripts.clarity.ms https://www.bridgepaynetsecuretx.com https://*.genalpha.com https://cdn.jsdelivr.net https://code.jquery.com https://*.googleapis.com https://*.cloudflare.com https://*.bootstrapcdn.com https://www.googletagmanager.com https://*.cookiebot.com https://*.datatables.net https://www.google-analytics.com https://bowercdn.net https://*.partcommunity.com https://*.aspnetcdn.com https://*.githubusercontent.com https://www.google.com https://www.gstatic.com https://blueimp.github.io https://*.maxcdn.com https://*.lr-ingest.io https://www.googleadservices.com https://*.purechat.com https://googleads.g.doubleclick.net https://*.purechatcdn.com https://*.appspot.com https://*.mailchimp.com 'unsafe-inline'; style-src 'self' 'unsafe-inline' https://*.genalpha.com https://cdn.jsdelivr.net http://*.googleapis.com https://*.googleapis.com https://*.cloudflare.com https://*.bootstrapcdn.com https://*.d
strict-transport-security: max-age=31536000; includeSubDomains

Links to (2)

brocebroom.com×1
genalpha.com×1

Linked from (1)

brocebroom.com×2