indexo.dev

escortory.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 325 ms crawled 2026-05-18

US · 172.67.215.150 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Escortory
Language
en

Technology

CDN
Cloudflare

Third-party hosts loaded (1)

  • challenges.cloudflare.com×1

Registration

Registrar
NameCheap, Inc.
Created
2026-02-02
Expires
2031-02-02 1719 days left
Updated
2026-03-05
Name servers
  • journey.ns.cloudflare.com
  • leland.ns.cloudflare.com

DNS records live

NS
  • journey.ns.cloudflare.com
  • leland.ns.cloudflare.com
MX
  • 10 mail.protonmail.ch
  • 20 mailsec.protonmail.ch
TXT
Show 4 TXT records
  • protonmail-verification=d9fdf06b6c9edfae630825fa175f8372fc6d9226
  • yandex-verification: 8e53761c921dc475
  • google-site-verification=0qIgewOKxNa1pd0azTLJgEST5beTotxYDwQBGaSZtgM
  • google-site-verification=Nx5fHmPKyoO3ZaaeC7ZBwd4N_Va7pkz4pSbkswljgH4

Email authentication strong

SPF
v=spf1 include:_spf.protonmail.ch ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine
policy: quarantine
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-05-03 to 2026-08-01
Expires in 74 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://escortory.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' blob: https://challenges.cloudflare.com https://static.cloudflareinsights.com https://www.googletagmanager.com https://www.google-analytics.com; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob: https:; media-src 'self' blob: data: https:; connect-src 'self' https://challenges.cloudflare.com https://static.cloudflareinsights.com https://www.google-analytics.com https://api.frankfurter.app; frame-src https://challenges.cloudflare.com https://js.stripe.com; object-src 'none'; base-uri 'self'
strict-transport-security
max-age=63072000; includeSubDomains; preload

Linked from (4)