cwallet.com

HTML metadata

Title

Secure and Easy Crypto Trading Platform to Buy & Invest Bitcoin, Ethereum | Cwallet

Description

Manage crypto securely on Cwallet, a simple multi-chain wallet and trading platform for spot and futures trading of Bitcoin, Ethereum, and trending coins.

Language

en

Canonical

https://cwallet.com

Translations

ar
bn
de
en
es
fr
hi
id
it
ja
ko
ms
my
ne
nl
pl
pt
ru
tl
tr
uk
ur
vi
zh-cn
zh-tw

Open Graph

url: https://cwallet.com/
title: Secure and Easy Crypto Trading Platform to Buy & Invest Bitcoin, Ethereum | Cwallet
site name: Secure and Easy Crypto Trading Platform to Buy & Invest Bitcoin, Ethereum | Cwallet
description: Cwallet is an All-in-One Multi-Chain crypto wallet and hybrid trading platform. Trade, swap, store assets, and make global crypto payments with top security.

Technology

CDN: Amazon CloudFront
CMS: Next.js

Social

Registration

Registrar

Gandi SAS

Created

2005-11-26

Expires

2027-11-19 549 days left

Updated

2026-01-22

Name servers

ns-1431.awsdns-50.org
ns-1704.awsdns-21.co.uk
ns-234.awsdns-29.com
ns-594.awsdns-10.net

DNS records live

NS

ns-1431.awsdns-50.org
ns-1704.awsdns-21.co.uk
ns-234.awsdns-29.com
ns-594.awsdns-10.net

MX

10 mail.protonmail.ch
20 mailsec.protonmail.ch

TXT

protonmail-verification=04b835bc85489efbca9413492c7b0af42a98eaf8
google-site-verification=lLPoZo1aTomrZUz0kMIKpYga6ZjtI0C89HxGfIyVXeE

Email authentication strong

SPF

v=spf1 include:_spf.mlsend.com include:_spf.protonmail.ch mx ~all

softfail (~all)

DMARC

v=DMARC1; p=reject

policy: reject (enforced)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7oCZf3KtF8AnQl5TXYV/gzkHwTdbnGiqA2oaWW2pqKHtjHfcVfZNg58bE2xtQzcyp9hdEcKrv6ORG5m1U…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCn2g6Ez5dmCe90qg6gYy548tamPWe3FK1p5vv3yUyknTEkoMzvlklr8UCEA1LBHVw9lf0ySZBaQvU4bal4kZCUyZ…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-05-10 to 2026-11-24

Expires in 189 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://cwallet.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(), interest-cohort=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'wasm-unsafe-eval' 'report-sample'; script-src-elem 'self' 'unsafe-inline' blob: detrade.com *.detrade.com *.googletagmanager.com *.intercomcdn.com *.intercom.io tganalytics.xyz *.cwallet.com *.wp.com; script-src-attr 'self' 'unsafe-inline' 'report-sample'; style-src 'self' 'unsafe-inline' 'report-sample'; style-src-elem 'self' 'unsafe-inline' www.gstatic.com:443 detrade.com:443 *.detrade.com *.cwallet.com *.gstatic.com *.wp.com; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: blob: https:; font-src 'self' data: https:; connect-src 'self' data: *.cwallet.com *.intercom.io *.intercomcdn.com *.walletconnect.com *.walletconnect.org *.walletlink.org detrade.com *.detrade.com *.hyperliquid.xyz *.polymarket.com tganalytics.xyz config.ton.org unpkg.com/@rive-app/ cdn.jsdelivr.net/npm/@rive-app/ raw.githubusercontent.com/ton-blockchain/ *.amazonaws.com/resource.cctip.io/ wss://*.intercom.io wss://*.intercom-messenger.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin

Links to (11)

Linked from (1)

guardarian.com×2