indexo.dev

dominos.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1183 ms crawled 2026-05-18

DE · 2.23.246.16 · AS16625 Akamai Technologies, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Domino's Home Page - Domino's Pizza, Order Pizza Online for Delivery - Dominos.com
Language
en

Technology

Server
Apache

Third-party hosts loaded (1)

  • www.google.com×1

Registration

Registrar
MarkMonitor Inc.
Created
1994-07-05
Expires
2027-07-04 411 days left
Updated
2026-04-03
Name servers
  • a1-66.akam.net
  • a10-65.akam.net
  • a11-66.akam.net
  • a13-67.akam.net
  • a2-64.akam.net
  • a8-65.akam.net

DNS records live

NS
  • a1-66.akam.net
  • a10-65.akam.net
  • a11-66.akam.net
  • a13-67.akam.net
  • a2-64.akam.net
  • a8-65.akam.net
MX
  • 20 mxa-00075301.gslb.pphosted.com
  • 20 mxb-00075301.gslb.pphosted.com
TXT
Show 26 TXT records
  • mongodb-site-verification=iNqzAy8BucBwu1ptDQGLtYonToaMpiln
  • apple-domain-verification=SrK8D7MWEtYQjAUPNhRm_1S85SKoQxSvgUMrFa6qhAo
  • google-site-verification=DF8SGerEQCKZsnLjZ_jF6IhImUJjdzqfcOitg_wPpyM
  • MS=ms80865721
  • globalsign-domain-verification=F60B61674DD17F984E3559DD5A609774
  • ms-domain-verification=ffb42473-d8e1-4cd4-8023-47ec49aad4d1
  • OSSRH-47960
  • apple-domain-verification=HaSP1IEdQLmrh33b
  • mongodb-site-verification=Qx5B0aloeTx7RQzIx0tlqspf01ttWBQs
  • docker-verification=369d79e7-f4aa-4168-b3b0-987b541afa02
  • glHHtG1TwIsO5GEa2WIpHgM5IvCvM6eWORh2scbb2tzcfs/psRcR6OHoEwsd6eBwZ/44KjnBZUZtljxPpJQHoA==
  • onetrust-domain-verification=9f61dab461714b16b6f2eca5f11ddf63
  • YRsmaYKZr8sYGFdGk8PHmsE9/vYeJjcxfr2tu2B0bjcszu/qMf6Yee0PZcTW0lV1nHtRWztfuTp/3ouALC4hWg==
  • google-site-verification=5EukP0RUVQID2tOE5xQ3c9f1l--Ni7jGLV4-FEGhwt8
  • facebook-domain-verification=roog3zgfz461oq6gemu6aq7durwj10
  • jamf-site-verification=sxjzRJnyicNvo6M6MqHPpw
  • google-site-verification=90hUq0eUn6zYjfStPZnCl1-u9J95ZHd-Rxji2J2S3bs
  • google-site-verification=KvaFuA4pF6RThrcpaUUj9MxwVpBDKrqjvJ5a1Ipdd68
  • docusign=b2a8f2c4-02bc-4701-865c-07f8e8809746
  • ZOOM_verify_iE4YA4BW4l0EfOUDAITObb
  • atlassian-domain-verification=ZNHuAR2RqVOXUQyDcNSooAPSRJ4cKiynjgbq2nkirsJFzZoe1Ba5AeIDnbcbpVSn
  • google-site-verification=IIu3Odvk-l-or4KLBNuTM0SiK4_11N46qRcy6cqAz5U
  • google-site-verification=-9aGIwjPxgDnywr2zPM7Z2rSg4DXIvHg4UnhdnbwAyA
  • google-site-verification=c9Cn9rWvQNwSGuKnBMviRlY0OrrEUynrpxZ40x0N7RQ
  • atlassian-domain-verification=ulfiPHdw5FaZqjsQeOJDdXyWkNdVziGRCJ1QJjI4m3CE/CsULKN06BcZ6JYel1fa
  • apple-domain-verification=bNnkEG7Yk8lhThwo

Email authentication partial

SPF
v=spf1 include:dpz.spf.dominos.com include:ecom.spf.dominos.com include:spf.protection.outlook.com include:spf-00075301.pphosted.com include:sent-via.netsuite.com -all
strict (-all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: none (monitoring only)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzfyw4UJb1KmObHbIuNm8XVGTrQ4QR0bY4OpxCtx47iyLAIPKJz+EU+M7mppXA5lcJr2VosEI9Wz9vxkxqbV…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48JC9pUytya+Xq5FtojhhPCPoFeElkx5gBBsG4YMaXBzH90dThsOL0A5625TQgJgzwdpUjk34OQpO+…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSa6fpds5Z0kvaQaBTcyVit+sPx7/9Ok4H3MM4tG7d7G35SVyO0LlWeeArLJcf9L0ZZDJpiaySiIhiKwSC…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuE1aYT1p8K/1Wmg1gDLXn1pptE4evl8WBiXpjhrJGtJcX8DlyN7ABi5YKlCfaCBFMym6kG2Q5bzqRGTGkn…
selectors probed

Certificate (current)

Entrust OV TLS Issuing RSA CA 2
from 2025-10-09 to 2026-10-01
Expires in 135 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.dominos.com/en/pages/international/

present
  • content-security-policy
  • x-frame-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
upgrade-insecure-requests; default-src 'unsafe-eval' 'unsafe-inline' 'self' *.dominos.com; font-src data: *.dominos.com fonts.gstatic.com storage.googleapis.com cash-f.squarecdn.com; style-src 'unsafe-inline' blob: *.bing.com *.dominos.com *.gstatic.com *.here.com fonts.googleapis.com www.youtube.com rafd.bingstatic.com *.cash.app; script-src-elem 'unsafe-eval' 'unsafe-inline' *.abmr.net *.appdynamics.com *.bing.com *.demdex.net *.dominos.com *.doubleclick.net *.facebook.com *.google.com *.googleapis.com *.googlesyndication.com *.gstatic.com *.here.com *.mathtag.com *.moatads.com *.ntv.io *.omtrdc.net *.raygun.com *.raygun.io *.turn.com *.vertamedia.com *.virtualearth.net ad.atdmt.com assets.braintreegateway.com c.paypal.com cdnssl.clicktale.net connect.facebook.net ct.pinterest.com ds-aksb-a.akamaihd.net js.braintreegateway.com s.pinimg.com s.yimg.com s.ytimg.com sc-static.net *.snapchat.com ssl.google-analytics.com static.xx.fbcdn.net tags.tiqcdn.com www.googleadservices.com www.payp

Links to (25)

Linked from (26)