indexo.dev

combatwaffle.com

.com crawl

First seen 2026-05-07 · Last seen 2026-05-07 · ok HTTP/1.1 200 1220 ms crawled 2026-05-14

US · 172.67.213.84 · AS13335 Cloudflare, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Combat Waffle Studios – Developers of Ghosts of Tabor
Language
en-US
Generator
WordPress 6.9.4
Canonical
https://combatwaffle.com/
Feeds

Technology

CDN
Cloudflare
CMS
WordPress
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×1
  • gmpg.org×1

Social

Registration

Registrar
NameCheap, Inc.
Created
2022-03-01
Expires
2029-03-01 1017 days left
Updated
2026-02-09
Name servers
  • desi.ns.cloudflare.com
  • nolan.ns.cloudflare.com

DNS records live

NS
  • desi.ns.cloudflare.com
  • nolan.ns.cloudflare.com
MX
  • 0 combatwaffle-com.mail.protection.outlook.com
TXT
Show 4 TXT records
  • ca3-0b8f74252e114d81b0fd3e26969c5bb1
  • google-site-verification=nYGJpt17VEQDBDUNlPIzmW18BXRe70RZ4QasoVUu1GA
  • jetbrains-domain-verification=3l970cdxgyklqiu585dgp1b64
  • MS=ms77278706

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:admin@combatwaffle.com; ruf=mailto:admin@combatwaffle.com; fo=1
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxh5HbQ5I549l0aDLQGmzST8eFgpyQWKk8BRF03LJ5TbL1RRWiDg+TsAI1n61wp9Rt3aHl5kM+qfF9J…
selectors probed

Certificate (current)

WE1
from 2026-04-10 to 2026-07-09
Expires in 51 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://combatwaffle.com/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (9)

Linked from (1)