indexo.dev

everyman.co

.co crawl

First seen 2026-04-14 · Last seen 2026-04-14 · ok HTTP/1.1 200 1057 ms crawled 2026-05-08

CA · 23.227.38.65 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Everyman - Everyday. Better.
Description
Everyday. Better. Tools for your everyday grind. Home of the Hideout Pack, Grafton Pen, Holden Wallet, & Porter Key Multi-tool 2.0.
Language
en
Canonical
https://everyman.co/

Open Graph

url
https://everyman.co/
title
Everyman - Everyday. Better.
site name
Everyman
description
Everyday. Better. Tools for your everyday grind. Home of the Hideout Pack, Grafton Pen, Holden Wallet, & Porter Key Multi-tool 2.0.

Technology

CDN
Cloudflare
CMS
Shopify
Fonts
  • Google Fonts
Third-party hosts loaded (20)
  • cdn.shopify.com×20
  • cdn.jsdelivr.net×3
  • fonts.googleapis.com×3
  • cdnjs.cloudflare.com×2
  • shop.app×2
  • api.config-security.com×1
  • backinstock.useamp.com×1
  • cartdrawer.nyc3.cdn.digitaloceanspaces.com×1
  • cdn-widgetsrepository.yotpo.com×1
  • cdn.intelligems.io×1
  • cdn1.stamped.io×1
  • conf.config-security.com×1
  • d10pwglna6up6p.cloudfront.net×1
  • fonts.gstatic.com×1
  • fonts.shopifycdn.com×1
  • monorail-edge.shopifysvc.com×1
  • sapi.negate.io×1
  • shopify-hub-connect-phntmapp.replit.app×1
  • static.klaviyo.com×1
  • triplewhale-pixel.web.app×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.bluehost.com
  • ns2.bluehost.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • klaviyo-site-verification=HFwCD4
  • google-site-verification=Qj3-dwEwjyDkQ-FLnnDbfgLkP3r00dYDVEkEdhgA7xs
  • facebook-domain-verification=bvbvv9cv8kqguv6wrm2fg31pxu65qx

Email authentication weak

SPF
not published
DMARC
v=DMARC1; p=none; rua=mailto:2e7c5731@mxtoolbox.dmarc-report.com; ruf=mailto:2e7c5731@forensics.dmarc-report.com
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2A8zQs63Sf1DxznnqxnqstwEBM01FAu4MsDAZ//PmytO+sq4tuWydnJfhUYSxiuf7NmBnbca59Wgqs…
selectors probed

Certificate (current)

E8
from 2026-03-17 to 2026-06-15
Expires in 27 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://everyman.co/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
block-all-mixed-content; frame-ancestors *; upgrade-insecure-requests;
strict-transport-security
max-age=7889238

Links to (3)

Linked from (1)