indexo.dev

elmah.io

.io crawl

First seen 2026-05-28 · Last seen 2026-06-03 · ok HTTP/1.1 200 740 ms crawled 2026-05-31

US · 172.67.71.57 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
elmah.io - AI-powered error logging and monitoring for .NET
Description
AI-powered error logging and uptime monitoring for .NET. Find bugs before you go live. Powerful search, MCP server, apps for Slack, Teams, and more.
Language
en
Canonical
https://elmah.io/

Open Graph

url
https://elmah.io/
title
elmah.io - AI-powered error logging and monitoring for .NET
site name
elmah.io
description
AI-powered error logging and uptime monitoring for .NET. Find bugs before you go live. Powerful search, MCP server, apps for Slack, Teams, and more.

Technology

CDN
Cloudflare

Social

DNS records live

NS
  • coby.ns.cloudflare.com
  • elma.ns.cloudflare.com
MX
Show 7 MX records
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 10 aspmx4.googlemail.com
  • 10 aspmx5.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • MS=F49E43D49CEF4633646F55752EB96429BE4EC12B
  • heyhack-verification=07e5e263-71d4-4cba-bd0a-93ecb1555b47
Verified for
  • GlobalSign
  • Google
  • Stripe

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:spf.mail.intercom.io include:amazonses.com include:servers.mcsv.net ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; pct=100; rua=mailto:re+fbfwootlhio@dmarc.postmarkapp.com; sp=quarantine; aspf=r;
policy: quarantine · sp=quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0OzZpj+x/OfYe6tpMDIWZFJ10J6i/xyhVaLlzMuPoT5e8qngVfHcX49wNN2OM6LGedwHIvrlyVvXGW…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
selectors probed

Certificate (current)

WE1
from 2026-05-27 to 2026-08-25
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://elmah.io/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.intercom.io *.intercomcdn.com *.cookiebot.com elmah.us7.list-manage.com; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' *.intercom.io *.intercomcdn.com *.cookiebot.com elmah.us7.list-manage.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: i.ytimg.com imgsct.cookiebot.com i.sstatic.net *.gravatar.com *.googleusercontent.com *.intercomcdn.com static.intercomassets.com; font-src 'self' fonts.gstatic.com fonts.intercomcdn.com; connect-src 'self' *.cookiebot.com *.intercom.io wss://*.intercom.io fonts.gstatic.com raw.githubusercontent.com *.intercom-messenger.com wss://*.intercom-messenger.com api.elmah.io api.allorigins.win; frame-src www.youtube.com www.youtube-nocookie.com consentcdn.cookiebot.com; object-src 'none'; media-src *.intercomcdn.com; form-action 'self' https://elmah.us7.list-manage.com; report-uri https://csp-elmah-io.pages.dev/
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-origin

Links to (4)

Linked from (2)