indexo.dev

dadrian.io

.io crawl

First seen 2026-04-12 · Last seen 2026-05-11 · ok HTTP/1.1 200 151 ms crawled 2026-05-06

US · 104.21.46.247 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
David Adrian
Language
en-us
Generator
Hugo 0.147.7

Open Graph

url
https://dadrian.io/
title
David Adrian
locale
en_us
site name
David Adrian
description
I am currently a product manager at Google, working on adding value to Chrome Security. Despite this, I identify both as an engineer and security researcher. I cofounded Censys, an attack-surface management security startup. I left Censys after their Series A. They’ve since raised a Series B Series C! I was employee #2 at Nametag. I’m also a core contributor to the ZMap open-source project. I have a PhD from the University of Michigan. I defended in 2018. My advisor was J. Alex Halderman. My research focus was using Internet-wide scanning to measure how cryptography is used on the Internet. It led to the discovery of the Logjam and DROWN attacks on TLS, and the creation of Censys.

Technology

CDN
Cloudflare
CMS
Hugo
Analytics
  • Cloudflare Insights
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • static.cloudflareinsights.com×1

Social

DNS records live

NS
  • mimi.ns.cloudflare.com
  • woz.ns.cloudflare.com
MX
  • 32 route3.mx.cloudflare.net
  • 81 route2.mx.cloudflare.net
  • 97 route1.mx.cloudflare.net
TXT
  • keybase-site-verification=EAFTLpBKcBsQIeXutsCZCPzVraUc8ibtLxTcndOt5S0
  • google-site-verification=enAKouYHtulD9Qn_SEwW8hKb9BC8gxsgbI42KRFYch4
  • keybase-site-verification=1YezQifemrREhTlPmzM70foFE2e5XNQ4EVEjaWXry5U

Email authentication partial

SPF
v=spf1 include:_spf.mx.cloudflare.net ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-24 to 2026-07-24
Expires in 66 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://dadrian.io/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
*=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src-elem 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src https://fonts.gstatic.com; style-src-attr 'unsafe-inline'; img-src 'self'; base-uri https://dadrian.io
strict-transport-security
max-age=63072000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
credentialless

Links to (11)

Linked from (2)