indexo.dev

drw.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-16 · ok HTTP/1.1 200 1282 ms crawled 2026-05-09

US · 13.33.235.16 · AS16509 Amazon.com, Inc.

Reputation 100/100

sector finance type homepage

HTML metadata

Title
Homepage
Description
DRW is a diversified trading firm innovating across both traditional and cutting-edge markets.
Language
en

Open Graph

url
https://drw.com/
title
Homepage
site name
DRW
description
DRW is a diversified trading firm innovating across both traditional and cutting-edge markets.

Technology

CDN
Amazon CloudFront
CMS
Next.js
Fonts
  • Adobe Fonts
  • Google Fonts
Third-party hosts loaded (7)
  • res.cloudinary.com×21
  • fonts.googleapis.com×3
  • d21y75miwcfqoq.cloudfront.net×2
  • www.google.com×2
  • www.gstatic.com×2
  • fonts.gstatic.com×1
  • use.typekit.net×1

Social

Registration

Registrar
NameCheap, Inc.
Created
1995-12-27
Expires
2026-12-26 221 days left
Updated
2025-11-26
Name servers
  • ns-1395.awsdns-46.org
  • ns-1904.awsdns-46.co.uk
  • ns-215.awsdns-26.com
  • ns-847.awsdns-41.net

DNS records live

NS
  • ns-1395.awsdns-46.org
  • ns-1904.awsdns-46.co.uk
  • ns-215.awsdns-26.com
  • ns-847.awsdns-41.net
MX
  • 10 mxa-00579801.gslb.pphosted.com
  • 10 mxb-00579801.gslb.pphosted.com
  • 15 mx0a-00579801.pphosted.com
  • 15 mx0b-00579801.pphosted.com
TXT
Show 26 TXT records
  • openai-domain-verification=dv-bl1Gm8p5MzSqzcsYX82v4QZc
  • _7uztgvnlx4e1iayd5ms9v08rzcejbm6
  • MS=ms73206092
  • GRC_2023
  • docusign=0dd9590e-d164-449d-8fb8-eb586a868c8b
  • f01b7fecb2e64b4775b99ba8132340eb9b0839d07049d02f87
  • google-site-verification=EOrX62VcmLl1lOJB1EJj-14ALSH50O2hH00e3wV7qJQ
  • meltwater_sso_20230131_TRITON_12236
  • pardot966363=c916fedd84e5b7c4e92a7b73d372c897bb9e70b122fe49d9d697ce41e0e7288f
  • google-site-verification=yGaA-AG5aduFpQRYIXd20hYbd8kPlPFfkyfVzEoUY8I
  • kl0y73x8s12zwgw01ldlcpjs7d3jn6f3
  • _t92wvjdfnjdrx9i3gb6kabku5ux00fj
  • cursor-domain-verification-4cc8x3=IGYV3J77OA07csFigfJ1LqjUI
  • apple-domain-verification=ZqD0Rh3jAntx1z5f
  • g2s83whlvlc0k9bzc7h0sskkstkn95y9
  • wrike-verification=MTQxNjkyODpmZGVjNWM3NDMxYzhhYmE1NmRkZjFmMGNiOGExZjU1ODZhOGQwZjhkOTA5MTRkODA1YWUxYThkOTY4ODVmNWVi
  • _sxiz8qtsx0jkv0n20c5p8siqpor0bft
  • jamf-site-verification=u9v0XY7QDCIBuMhdo1I07Q
  • docker-verification=12be0895-146f-4c2c-b100-2bb17896f6cb
  • cisco-ci-domain-verification=11c13656c0027ed621c5286fa817841d9438b2c88b822aecc079b80d3b3fe904
  • miro-verification=9a764295a352981ba075a873d29287b413f380b5
  • slack-domain-verification=HiHhwCXXUij0uJazMOU3tGrYWRpn9znWAxtraKUM
  • canva-site-verification=qdSmJ66phAKjcgPL4GCZLg
  • ccs/o6QwM7yfeGZjvmC1usIjUIVOORIeeuwwPIjw2jqjyae0a8S2bXRvaprO6BnZj9/El3qOIN0vFc9/kCNK/w==
  • 07CB9EF449
  • termius-domain-verification=BmmOFlBYSjjigPH6zpbTR_nM0_Hw-wriQBuYln4UX2klD1RnJRMkvTzA5SpFDgWBTAUsx_LS7PnoUSQbRs-mgA

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com a:mailers.drwholdings.com include:spf-00579801.pphosted.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; pct=100; fo=1:0:d:s; ri=3600; rua=mailto:36853d97@inbox.ondmarc.com; ruf=mailto:36853d97@inbox.ondmarc.com;
policy: reject (enforced) · sp=reject
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCJvEF0bos7pg877CVwYl+9WB/FazYrCb/LT8yFcDBBklvv4WQRbeve1mqw4tONUbHP2I6MNyGhHswB4E8RH/…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPgDaXW0IQpHgDJ9SMdG6J/KkFvQ+Q3dTTSfq2PKpfNR94VDYspZN/u6Tr70v+0IBCzwcaUmPuy5L1gfDGX+…
  • s2: v=DKIM1; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9ViPwF6urXesI6UAd2GGwBp2I+/7uJO3Yg4HZOzsUx0GbgHR0xCDcplTPlPSUacFcObDm+P8WDnM+tR…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2026-03-21 to 2026-10-05
Expires in 139 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.drw.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
no-referrer
permissions-policy
geolocation=(), microphone=(), camera=(), payment=(), fullscreen=(self)
x-content-type-options
nosniff
content-security-policy
default-src *; script-src * 'unsafe-inline'; style-src * 'unsafe-inline'; font-src * data:; img-src * data: https://*.cloudinary.com https://*.apple-mapkit.com; connect-src 'self' identity.tinajs.io content.tinajs.io assets.tinajs.io analytics.google.com www.google-analytics.com *.googletagmanager.com https://www.google.com https://www.gstatic.com https://*.cloudinary.com https://api.cloudinary.com https://cdn.apple-mapkit.com https://*.apple-mapkit.com https://cognito-idp.us-east-1.amazonaws.com https://boards-api.greenhouse.io; worker-src 'self' blob:; frame-src 'self' https://www.youtube-nocookie.com https://www.youtube.com https://*.pardot.com https://*.netlify.app https://*.google.com https://*.gstatic.com https://widget.cloudinary.com; frame-ancestors 'self' https://create.netlify.com;
strict-transport-security
max-age=15768000; includeSubDomains; preload

Links to (7)

Linked from (5)