indexo.dev

cinerads.com

.com crawl

First seen 2026-05-07 · Last seen 2026-05-14 · ok HTTP/1.1 200 1879 ms crawled 2026-05-14

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
CineRads - Make Your Brand Go Viral
Description
Turn your brand assets into TikTok slideshow content. Upload images, pick a hook, AI writes the copy, and export vertical slideshows.
Language
en

Open Graph

title
CineRads - Make Your Brand Go Viral
description
Turn your brand assets into TikTok slideshow content for your next post or ad.

Technology

CDN
Vercel
CMS
Next.js

Contact

Email

Registration

Registrar
OVH sas
Created
2026-02-27
Expires
2027-02-27 284 days left
Updated
2026-02-27
Name servers
  • dns14.ovh.net
  • ns14.ovh.net

DNS records live

NS
  • dns14.ovh.net
  • ns14.ovh.net
MX
  • 1 mx1.mail.ovh.net
  • 100 mx3.mail.ovh.net
  • 5 mx2.mail.ovh.net
TXT
  • tiktok-developers-site-verification=MYNrad1UKx1w92DlKPDTwoWYCDbZ4tSL
  • google-site-verification=EOneRLJ8me5nQ5k9xH4n2XyCjNOrj-06faW5NEL_6S0
  • google-site-verification=68IjoZenlTwwNc2q0OhrQAIbjvR-Yb1c6mDqksdxUKs

Email authentication weak

SPF
v=spf1 include:mx.ovh.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-29 to 2026-07-28
Expires in 70 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.cinerads.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' blob: https://js.stripe.com https://*.posthog.com https://*.sentry.io https://datafa.st https://*.clerk.accounts.dev https://clerk.cinerads.com https://challenges.cloudflare.com; style-src 'self' 'unsafe-inline' https://*.clerk.accounts.dev https://clerk.cinerads.com; img-src 'self' data: blob: https:; media-src 'self' blob: https://*.supabase.co https://*.r2.dev https://commondatastorage.googleapis.com; worker-src blob:; connect-src 'self' blob: https://*.supabase.co https://*.supabase.in https://*.r2.dev https://api.stripe.com https://*.posthog.com https://*.sentry.io https://datafa.st https://unpkg.com https://*.clerk.accounts.dev https://clerk.cinerads.com https://accounts.cinerads.com https://api.clerk.dev https://clerk-telemetry.com https://open.tiktokapis.com https://www.tiktok.com; frame-src https://js.stripe.com https://hooks.stripe.com https://*.clerk.accounts.dev https://clerk.cinerads.com https://accou
strict-transport-security
max-age=63072000

Linked from (2)