fitnesstogetherfranchise.com

.com crawl

First seen 2026-05-07 · Last seen 2026-05-19 · ok HTTP/1.1 200 2189 ms crawled 2026-05-14

US · 52.11.37.152 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Personal Training and Fitness Franchise Opportunity | Fitness Together
Description: Join Fitness Together, a proven personal training franchise with 25+ years of success. Build a rewarding business while transforming lives in your community.
Language: en
Canonical: https://www.fitnesstogetherfranchise.com/

Open Graph

url: https://www.fitnesstogetherfranchise.com/
title: Personal Training and Fitness Franchise Opportunity | Fitness Together
description: Join Fitness Together, a proven personal training franchise with 25+ years of success. Build a rewarding business while transforming lives in your community.

Technology

Server: nginx

Third-party hosts loaded (1)

analytics.scorpion.co×1

Social

Contact

Phone

7209155331

Address

1890 Wynkoop Street, Unit 1, 80202, Denver, CO

Registration

Registrar

GoDaddy.com, LLC

Created

2002-12-05

Expires

2026-12-05 198 days left

Updated

2025-09-17

Name servers

tani.ns.cloudflare.com
walt.ns.cloudflare.com

DNS records live

NS

tani.ns.cloudflare.com
walt.ns.cloudflare.com

TXT

b2cj59r0j9p3ti58b2u1c3lci8
fkvk595fcbod2u10lc828202vo

Verified for

Google

Email authentication no MX

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-03-29 to 2026-06-27

Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.fitnesstogetherfranchise.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src * blob: data: cid:; img-src * data: blob: cid: 'unsafe-inline'; media-src * data: blob:; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; style-src * blob: data: 'unsafe-inline'; style-src-elem * blob: data: 'unsafe-inline', font-src * data:
strict-transport-security: max-age=63072000; includeSubDomains; preload