indexo.dev

cadaoz.com

.com crawl

First seen 2026-04-16 · Last seen 2026-05-11 · ok HTTP/1.1 200 1516 ms crawled 2026-05-11

US · 104.26.0.77 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector tech type homepage

HTML metadata

Title
Cadaoz : La marque de produits reconditionnés premium
Description
Vous cherchez un site de téléphones reconditionnés ? Reconditionnement de smartphones, tablettes, ordinateurs made in France sous la marque Cadaoz : Des Samsung, Huawei et Apple reconditionnés en France
Language
fr
Canonical
https://www.cadaoz.com
Translations
  • fr
Feeds

Open Graph

url
https://www.cadaoz.com/
title
Cadaoz : La marque de smartphone reconditionné premium
description
Cadaoz, la marque du smartphone reconditionné fiable made in France. Des Samsung, Huawei et iPhone reconditionnés en Bretagne à Dinan près de Rennes

Technology

CDN
Cloudflare
Analytics
  • Cloudflare Insights

Third-party hosts loaded (2)

  • ajax.googleapis.com×1
  • static.cloudflareinsights.com×1

Social

Registration

Registrar
Gandi SAS
Created
2019-03-26
Expires
2030-03-26 1406 days left
Updated
2026-02-06
Name servers
  • karl.ns.cloudflare.com
  • wally.ns.cloudflare.com

DNS records live

NS
  • karl.ns.cloudflare.com
  • wally.ns.cloudflare.com
MX
  • 0 fortimail.cordongroup.com
TXT
  • google-site-verification=gnR_K7eQL2dHD7uIwVKYU8q26m9Jyitn6bewmbkfFFw
  • google-site-verification=xoFnga8E1EJpeFcdqSdSJP1mV97HzKrwzpYYWYTdINk

Email authentication partial

SPF
v=spf1 mx include:spf.mailjet.com include:spf.cordongroup.com include:spf.protection.outlook.com include:_spf.gandi.net -all
strict (-all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:dmarc-rua@cordongroup.com; ruf=mailto:dmarc-ruf@cordongroup.com
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-22 to 2026-07-21
Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.cadaoz.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
Header values
referrer-policy
same-origin, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
interest-cohort=()
x-content-type-options
nosniff, nosniff
content-security-policy
frame-ancestors 'self', default-src 'self' *.axept.io www.google.com *.clarity.ms; frame-ancestors 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: ajax.googleapis.com www.googletagmanager.com www.google.com *.axept.io *.clarity.ms www.gstatic.com www.google-analytics.com; img-src 'self' data: ps.w.org *.gravatar.com axeptio.imgix.net *.clarity.ms *.bing.com www.googlemanager.com *.axept.io *.linkedin.com; media-src 'self' *.vimeo.com vod-progressive.akamaized.net data:; connect-src 'self' *.axept.io *.google-analytics.com *.linkedin.com cadaoz.piwik.pro www.google.com *.clarity.ms data:; frame-src 'self' www.google.com www.youtube.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com data:; script-src-elem 'self' 'unsafe-inline' polyfill.io cdnjs.cloudflare.com static.cloudflareinsights.com snap.licdn.com www.clickcease.com www.googletagmanager.com cadaoz.piwik.pro *.axept.io www.google.com www.clarity.ms www.gstatic.com ajax.google
strict-transport-security
max-age=31536000; preload

Links to (4)

Linked from (1)