indexo.dev

cimarron-firearms.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1945 ms crawled 2026-05-19

US · 178.156.204.162 · AS213230 Hetzner Online GmbH

Reputation 100/100

Classifying

HTML metadata

Title
Cimarron Firearms - Western Lifestyle & Firearms
Description
Cimarron is the leader in innovation for old west firearms reproductions and is proud to have created the new models, making our guns more reliable, higher in quality and historically accurate.
Language
en

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×5
  • www.googletagmanager.com×3

Social

Contact

Email
Address
© Cimarron Firearms. 2020. All Rights Reserved

Registration

Registrar
Network Solutions, LLC
Created
1998-01-02
Expires
2031-01-01 1686 days left
Updated
2025-11-04
Name servers
  • chase.ns.cloudflare.com
  • jean.ns.cloudflare.com

DNS records live

NS
  • chase.ns.cloudflare.com
  • jean.ns.cloudflare.com
MX
  • 0 cimarronfirearms-com02b.mail.protection.outlook.com

Email authentication strong

SPF
v=spf1 a mx ip4:104.207.248.76 include:_spf.google.com include:_spf.elasticemail.com include:sendgrid.net include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; pct=100;
policy: quarantine
DKIM
  • default: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt73MmOuHIxRiC5yJjhq1+TFzijYeem/9hz0zfp4a2GDKNbjXEa/FZ0c7uJDnDXEDbP8Pv07iOaCgQ8Cw…
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuUwYHVOGYskk/dF+Xkk8XFVrfaWG6B9nZ2o+H3nsZgiIQgL8mdfbxt9Dxu1ZUi5NCJq4wfQr22NTT…
selectors probed

Certificate (current)

R13
from 2026-04-27 to 2026-07-26
Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.cimarron-firearms.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.fontawesome.com *.fonts.googleapis.com data: *.cloudflare.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.authorize.net 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com goog
strict-transport-security
max-age=31536000;

Links to (6)

Linked from (1)