coinex.com

HTML metadata

Title

CoinEx Website - Cryptocurrency Exchange | Buy and Sell Bitcoin (BTC), Ethereum (ETH) & Altcoins

Description

CoinEx - A professional global cryptocurrency exchange that supports BTC/ETH/DOGE/LTE/XRP trading with high-speed matching engine, very fast deposit and withdrawal experience, guarding assets with multi-dimensional security and protection.

Language

en

Canonical

https://www.coinex.com/en

Translations

ar
en
es
fa
id
ja
ko
pt
ru
tr
vi
zh-hans
zh-hant

Open Graph

url: https://www.coinex.com/en
title: CoinEx Website - Cryptocurrency Exchange | Buy and Sell Bitcoin (BTC), Ethereum (ETH) & Altcoins
locale: en_US
site name: CoinEx
description: CoinEx - A professional global cryptocurrency exchange that supports BTC/ETH/DOGE/LTE/XRP trading with high-speed matching engine, very fast deposit and withdrawal experience, guarding assets with multi-dimensional security and protection.
locale:alternate: es_ES

Technology

CDN: Cloudflare

Third-party hosts loaded (1)

file.coinexstatic.com×2

Registration

Registrar

GoDaddy.com, LLC

Created

2001-07-16

Expires

2028-07-16 789 days left

Updated

2026-04-29

Name servers

irma.ns.cloudflare.com
lloyd.ns.cloudflare.com

DNS records live

NS

irma.ns.cloudflare.com
lloyd.ns.cloudflare.com

MX

1 smtp.google.com

TXT

Show 4 TXT records

ca3-1696b632e6a44c38aef0f33f30c1d021
ca3-f7f627213a0e4fc181e8a9a034a84586
google-site-verification=R5nyt2RRvvVsNbjL8Hxtyr6iL1IBcYGxDzwYDpLDGUs
google-site-verification=SbhabnMDugsXEPSa8r_CXe2FIoBkw0atNxGRVTzSgFA

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:mail.zendesk.com include:trustpilotservice.com -all

strict (-all)

DMARC

v=DMARC1;p=reject;pct=100;fo=1

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaJQV0R35H0Orqb8tDKu7mcnt9EhVx9bXdWUPW9JgPhFFS+qW8ggpijnZmvSyBrIMSSQCyNh12nJoC…

selectors probed

Certificate (current)

WE1

from 2026-04-22 to 2026-07-21

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.coinex.com/en

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-resource-policy

findings

CSP uses wildcard sources
weak frame protection
weak content type protection
missing Permissions Policy

Header values

referrer-policy: no-referrer, same-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff, nosniff
content-security-policy: frame-ancestors 'self'; object-src none; upgrade-insecure-requests; default-src 'self' blob: static.zdassets.com coinex.zendesk.com file.coinexstatic.com *.coinex.com:* coinex.com:*; worker-src blob: 'self'; script-src www.google-analytics.com www.googletagmanager.com static.geetest.com gcaptcha4.geetest.com gcaptcha4.geevisit.com dn-staticdown.qbox.me static.geevisit.com widget-mediator.zopim.com *.zdassets.com api.geetest.com monitor.geetest.com bakapi.gtapp.xyz res.wx.qq.com coinex.zendesk.com widget.sandbox.paybis.com widget.paybis.com 'wasm-unsafe-eval' *.coinex.com coinex.com 'sha256-bn9qWhnbuSuVgjoOReBcbTuq9B86T/PBct3S0uhc+4c=' 'sha256-8cr/YeVmE4PHSwqAxM09Soow99M9+3VDrlMT5seMff4=' 'sha256-mmukXM+0fakSVQTGBNLRSN2aSfQk//gWs9cRGnpnkHI=' 'sha256-N6xXrOZF+6SeRG5cPM93GWn5QtEbxIHjHEpj1R6WWKI=' 'sha256-qKsg6ewJJeNjV7lDPf8s/WOlWi+L/4B6+9eVitINH1s=' 'sha256-bRDuUyi4dla3WRGCyJ6srPzqqkE06m+Fpr8NK/BKUQU=' 'sha256-g5tarRXMbPVDpKEg7nU/yvyaQmdDzLwHOVeWDVvbHMs=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQ
strict-transport-security: max-age=15552000; includeSubDomains, max-age=63072000
cross-origin-resource-policy: same-origin