coach.me

HTML metadata

Technology

Server

Apache

CMS

WordPress

Ads

• Meta Pixel

Third-party hosts loaded (4)

• stats.wp.com×3
• connect.facebook.net×1
• gmpg.org×1
• www.facebook.com×1

Social

• facebook
• instagram
• youtube

Contact

Email

• support@coach.me

DNS records live

NS

• ns1.dnsimple.com
• ns2.dnsimple.com
• ns3.dnsimple.com
• ns4.dnsimple.com

MX

• 1 aspmx.l.google.com
• 10 aspmx2.googlemail.com
• 10 aspmx3.googlemail.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

• mt-92423099
• ALIAS for coachdotme.r8asmprfr5ky0.us-east-1.cs.amazonlightsail.com
• ahrefs-site-verification_9bce48cde3eeb71ab2dac7ce60195d985b0c4a426c0fd2ef1575823f907453a0
• google-site-verification=dm-QiwBrvYqKcCBYe6PVYMaJmCA3UcJ2tUQGEQzvWno

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:amazonses.com include:helpscoutemail.com ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;rua=mailto:engineering@coach.me

policy: quarantine

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsH7PvLbKRiJkJBJNiBFr48NgiOq6c0FHdepjiDBy2kJCpZ4OXfkqbNFOHdDT4Ihi+sA7rwz3O0OP89…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdEkSejAHUmgbobnVn0VyR2d/GBZEGr8a8Nj9kOIQM819rj4ncGMWV2LYPu1eAhK2empK+FsmwqD6Gs6/g…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxh4puyYQDYiZncf6/hJZSkoeRyFpI9p90XkheQOtlTFoflTmT5CfiLH2nkyyb3vJSJElq8A+vAgAFL4PE…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://coach.me/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• calendly.com×2
• facebook.com×2
• instagram.com×2
• youtube.com×2

Linked from (1)

• busterbenson.com×2