expensify.com

HTML metadata

Title: Spend Management Software for Receipts & Expenses | Expensify
Description: Expensify's spend management software simplifies receipt and expense tracking. Automate reports, control spending, and save time with our easy-to-use platform.
Canonical: https://www.expensify.com/

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (7)

d2k5nsl2zxldvw.cloudfront.net×102
accounts.google.com×1
cdn-4.convertexperiments.com×1
client-registry.mutinycdn.com×1
px.ads.linkedin.com×1
www.facebook.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

Domain.com - Network Solutions, LLC

Created

2007-10-26

Expires

2035-10-26 3447 days left

Updated

2025-10-26

Name servers

elinore.ns.cloudflare.com
newt.ns.cloudflare.com

DNS records live

NS

elinore.ns.cloudflare.com
newt.ns.cloudflare.com

MX

10 mail1.prod.lax.exfy.io
10 mail1.prod.rno.exfy.io
10 mail1.prod.sjc.exfy.io

TXT

Show 21 TXT records

FBF0BFF4DE
cloudflare_dashboard_sso=80e6a76219ec72834e43d729f71d971f
stripe-verification=2083A6B1FA1ACD87FCBB4A6C4869F57A041261B3BB2357613C8878677879D74E
parallels-domain-verification=997ffd74e781471888e2bdb10a22f72dd1eea2d21cc0488a8de7df92577d39a7
google-site-verification=c_wzUmlUz1RS2oI8T8jaPjemnkdp4rAQh4c9TofHkiY
cursor-domain-verification-vftet7=zt27s8xVoWwATlVpGw8YqAUEB
314786373-8418949
atlassian-domain-verification=zwoncadguzNUy4jbGaa/i/7sXz6N3pkOpJ1VfjaWaJ7naAHqba3e6uezPgea0wcY
docker-verification=f380ab89-e5e3-43ac-8ef6-cc3a6eaddb93
openai-domain-verification=dv-I8ubuvE6jugg1Q7xWFiNa7S5
hcp-domain-verification=b25a30f4d0d272d74500af05d95453d9f3deb512a0c1208b9ebd071eccf6558a
apple-domain-verification=3GwiRkpOV-lbmnzbZH-AsG-E7jY7_IOTVVkL7a3KSY4
sprout-social-0307ed67-e834-47ee-8672-525a476d15a2
status-page-domain-verification=77s5wpm9xlvn
6A45D0D680
google-site-verification=mwjk5rKbVkv3dvdth34OMS8NUNPasa-q6S3CgNPEB5A
have-i-been-pwned-verification=d046d65e18c5456a41a2462d4a105125
MS=ms27060524
docusign=ba395f5c-ba0c-4aa6-8aea-a51a87b926bf
anthropic-domain-verification-5x6966=iooy01N0biy5JjFmPksmRuADy
manus-domain-verification-neaq2f=lFtisqZ9eTNqnXqqI8RDBPWm3

Email authentication strong

SPF

v=spf1 ip4:162.0.152.65 ip4:162.0.153.65 ip4:162.0.154.65 ip4:143.55.230.205 ip4:143.55.230.232 ip4:143.55.230.96 ip4:161.38.199.231 ip4:216.221.168.219 ip4:216.221.168.220/31 ip4:216.221.168.222 include:amazonses.com include:_spf.google.com include:46862285.spf03.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=quarantine; rua=mailto:0b95fe2410aa4250bcd20779d4eaa98e@dmarc-reports.cloudflare.net,mailto:re+85bc0468bee0@inbound.dmarcdigests.com; adkim=r; aspf=r; pct=100

policy: reject (enforced) · sp=quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCVA1QuX5Bkz1FUI3lTUQ2Pz9XsivvQ00fbehXotAvdzkdjiVeqtulBO8TaAkuly0IOWRcDbOV5jCsV8PPXGO…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

E8

from 2026-04-04 to 2026-07-03

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.expensify.com/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
cross-origin-opener-policy

findings

missing frame protection
missing Permissions Policy

Header values

referrer-policy: origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: frame-ancestors https://we.are.expensify.com www.expensify.com https://new.expensify.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups