indexo.dev

cir2.com

.com crawl

First seen 2026-05-31 · Last seen 2026-05-31 · ok HTTP/1.1 200 4515 ms crawled 2026-06-01

US · 192.153.59.210 · AS19149 US Signal Company, L.L.C.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
POST data
Language
en

Technology

Server
Apache

Registration

Registrar
GoDaddy.com, LLC
Created
2000-05-17
Expires
2029-05-17 1079 days left
Updated
2026-02-05
Name servers
  • ns1.cir2.com
  • ns2.cir2.com
  • ns3.cir2.com

DNS records live

NS
  • ns1.cir2.com
  • ns2.cir2.com
  • ns3.cir2.com
MX
  • 0 cir2-com.mail.protection.outlook.com
TXT
Show 4 TXT records
  • bc88cc4952ac42af950def4514fec8c7
  • a4167c93b7ba457ba34fbbe20569772c
  • MS=2E81C64D70608DA8D6409A16569EDE2C8DEF418B
  • f?Kk8I8gd8?u@thboYFywP52Sv2o&BuXyuMo1cV&QW543Xbpo6d0@NSj3exa4GN*oj*7tlu@9X4*vgnRLyugj1t9wF6zvX@Rm3F
Verified for
  • GlobalSign
  • Google
  • Meta
  • Microsoft
  • Zoom

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com include:_spf.qualtrics.com include:spf.braintreegateway.com include:addonspf.cir2.com ip4:50.57.208.192 ip4:3.17.232.194 ip4:3.131.185.98 ip4:18.220.188.117 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:mailauth-reports@cir2.com
policy: none (monitoring only)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsASicdBK5KEpfGDe5vkQKtwSJVZWkyjwrf2JybdUDIAJsUna+zMCuJ1sB+lwPYb7GI3A3XqHnKZUGq…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrgYE30Xayo8Q5FPh9OJVdZ757LsCImjs0gtkmLx5Hvj0miQ42kJbtoHTidSCw/03VA5l+35nziWXY…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudkKREuaH9B7S4nXOQW4tV7sDMtbH4/pCJOMwVEMwDPieCUkRIenfkOJlwa2FRqCwpvi3NSFgR5uz1wVsE…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6EZEX58d6dMTqD4ZSmPwTN95It5VRbNiMTk2CEZ3pIFQcfYZoVMiyTt+lTlQDhsd4DK6yRmAoMM9QFEtGF…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-08-11 to 2026-09-12
Expires in 102 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.cir2.com/

present
  • content-security-policy
  • x-frame-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
ALLOW-FROM https://wealthport.cir2.com
content-security-policy
frame-ancestors https://wealthport.cir2.com https://rc.wealthmsi.com; connect-src * 'unsafe-inline';

Linked from (1)