indexo.dev

demandaam.com

.com crawl

First seen 2026-05-28 · Last seen 2026-05-30 · ok HTTP/1.1 200 777 ms crawled 2026-05-30

US · 15.197.162.35 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
American Axle & Manufacturing | Aftermarket OE Parts
Description
AAM has developed a series of axle and driveshaft components to make it easier for the installer to perform a repair or a complete replacement job. Using only authentic OE approved and tested parts, Power to Deliver components will provide the proper fit and function required to avoid noise, vibration and harshness that leads to customer satisfaction. AAM designs, manufactures and validates all components to meet the OEM's specifications and brings to the aftermarket a true OE product line.
Language
en

Technology

Server
nginx
jQuery
3.6.0
Stack
PHP
Fonts
  • Font Awesome
  • Google Fonts

Third-party hosts loaded (5)

  • aamaftermarket.s3.amazonaws.com×8
  • code.jquery.com×3
  • fonts.googleapis.com×1
  • maps.googleapis.com×1
  • use.fontawesome.com×1

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2013-09-06
Expires
2026-09-06 93 days left
Updated
2025-09-02
Name servers
  • dns1.cscdns.net
  • dns2.cscdns.net

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 10 custmx.cscdns.net

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:1xz5kjjra.spf.checkpoint-spf.com include:spfa.cpmails.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email;
policy: quarantine
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6EfsvFzspPfdDkLlXneLWQfHqzsvQjsKbwE3cHy6zpndkVrrUBEfw6QR4IW2JZYSB5M5U7RJJ+FW55NyG…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAys5GZOzoSwGxuxab9KxB/F+ApKh/4KU9iI7R5ennJXMrZu49Vd9vs9wi98jsFuPMty0gSZMmcgvTfuo8ox…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2026-01-06 to 2027-02-05
Expires in 245 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://demandaam.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://www.google.com/ https://maps.googleapis.com/maps/api/mapsjs/ code.jquery.com maps.googleapis.com www.google-analytics.com ssl.google-analytics.com ajax.googleapis.com www.google.com www.gstatic.com maps.googleapis.com;font-src 'self' fonts.gstatic.com use.fontawesome.com;style-src 'self' fonts.googleapis.com use.fontawesome.com code.jquery.com www.google.com www.gstatic.com maps.googleapis.com 'unsafe-inline';script-src 'self' code.jquery.com maps.googleapis.com www.google-analytics.com ssl.google-analytics.com ajax.googleapis.com www.google.com www.gstatic.com maps.googleapis.com 'unsafe-inline' 'unsafe-eval';img-src 'self' www.demandaam.com demandaam.com s3.amazonaws.com data: aamaftermarket.s3.amazonaws.com maps.gstatic.com maps.googleapis.com www.google-analytics.com ssl.google-analytics.com
strict-transport-security
max-age=31536000; includeSubDomains

Links to (2)

Linked from (1)