cryptpad.org

.org crawl dns

First seen 2026-04-28 · Last seen 2026-05-18 · ok HTTP/1.1 200 649 ms crawled 2026-05-06

FR · 92.222.135.200 · AS16276 OVH SAS

Reputation 100/100

Classifying

HTML metadata

Title: CryptPad.org
Description: End-to-end encrypted collaborative office suite
Language: en

Open Graph

url: http://cryptpad.org/
title: CryptPad.org
description: End-to-end encrypted collaborative office suite

Technology

Server: nginx

Social

Registration

Registrar

OVH sas

Created

2018-04-16

Expires

2027-04-16 331 days left

Updated

2026-04-16

Name servers

dns100.ovh.net
ns100.ovh.net

DNS records live

NS

dns100.ovh.net
ns100.ovh.net

MX

1 mail.cryptpad.org

Email authentication strong

SPF

v=spf1 include:spf.mailjet.com ip4:54.36.1.148 ip6:2001:41d0:128:f004::1 -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=reject; pct=100; rua=mailto:noreply-dmarc@cryptpad.org!10m; ruf=mailto:forensics@cryptpad.org!10m; rf=afrf; fo=1; ri=86400; adkim=s; aspf=s

policy: reject (enforced) · sp=reject

DKIM

dkim: v=DKIM1;k=rsa;s=email;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZnCJq9Jm206pX/eRadxgHnlKkDtnpkWlkUy8nVlBpj1fCdgEmRdlixIMJDYFs5745p+/V1l…

selectors probed

Certificate (current)

from 2026-04-20 to 2026-07-19

Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://cryptpad.org/

present

strict-transport-security
content-security-policy
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' https: 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; object-src 'none'; font-src 'self'; frame-src https://peertube.xwiki.com; frame-ancestors 'none';
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (4)

Linked from (1)

keepandroidopen.org×2