indexo.dev

crosstex.com

.com crawl

First seen 2026-05-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 8156 ms crawled 2026-05-20

US · 173.239.38.176 · AS27257 Webair Internet Development Company Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Dental Supplies | Medical Supplies | CROSSTEX
Language
en

Technology

Server
Microsoft-IIS
CMS
Drupal
jQuery
2.1 known XSS (<3.5)
Cookie consent
  • OneTrust

Third-party hosts loaded (3)

  • cdn.cookielaw.org×1
  • js.adsrvr.org×1
  • www.w3.org×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1996-08-18
Expires
2031-08-17 1914 days left
Updated
2024-08-23
Name servers
  • pdns09.domaincontrol.com
  • pdns10.domaincontrol.com

DNS records live

NS
  • pdns09.domaincontrol.com
  • pdns10.domaincontrol.com
MX
  • 10 mxa-003bcb01.gslb.pphosted.com
  • 10 mxb-003bcb01.gslb.pphosted.com
TXT
Show 4 TXT records
  • qu0mglk5efp7ktmueutsenqeqf
  • udm518qqvggi2ecv5q55mtrrti
  • 45d0b03mfhd4tvk5bl12tp5hs1
  • QeJt5jGU0amv3SfnSa7DmThURmijI8mjJu4ZF8Cvb5SiJ93QtOMSu+qkRIErD9qt64FFBgTznzmGAJmOCRr+dg==
Verified for
  • DocuSign
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;
policy: reject (enforced)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6e2Kid5iD3JEvcqDE4ifXNH2i4z6c9xy8hn0IP09pBpIvsUrRqHnm+xvDGp2oRtqMZ9pldyE+I/Oe…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7NrA9xyOZNVupp9imPEfVoLV+TxMOc/Kr7w47yWl7OkvbdCjH6966QnVZVu+5H/syau9lFCoqurGMU…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+7Q0Oscj0T4ULK6Pbk56JJGFBzx84Vlbi7yF5RU1U1yoXPyEbvu5Z7bkJKl/7y1M1kOOaiCBKkZa+qxzf…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDA8theFqKQWNnODpPSTRY+294tQLT9oICd9F7n+AzU0WgJ409XoXzvrVeF7fv/s3bH3UPMG8RK+xiGXB4Vt8g13Y…
selectors probed

Certificate (current)

R13
from 2026-04-23 to 2026-07-22
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.crosstex.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' googleapis.com *.googleapis.com gstatic.com fonts.gstatic.com *.google-analytics.com *.cookielaw.org *.adsrvr.org *.doubleclick.net 'unsafe-inline' 'unsafe-eval'; script-src 'self' *.google-analytics.com *.cookielaw.org *.adsrvr.org *.googletagmanager.com *.google.com *.gstatic.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' googleapis.com *.googleapis.com gstatic.com fonts.gstatic.com 'unsafe-inline'; style-src-elem * 'unsafe-inline'; media-src *; img-src * data:; font-src * data:; frame-src *
strict-transport-security
max-age=31536000; includeSubDomains;

Links to (6)

Linked from (1)