indexo.dev

fitonapp.com

.com crawl

First seen 2026-05-02 · Last seen 2026-05-15 · ok HTTP/1.1 200 4106 ms crawled 2026-05-09

US · 13.33.235.75 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
FitOn – #1 Free Fitness App, Stop Paying for Home Workouts
Language
en-US
Generator
WPML ver:4.9.2.1 stt:1,4,3,2;

Open Graph

url
https://fitonapp.com/
title
FitOn - #1 Free Fitness App, Stop Paying for Home Workouts
locale
en_US
site name
FitOn - #1 Free Fitness App, Stop Paying for Home Workouts
description
Lose weight, get fit and feel great anytime, anywhere with free on-demand fitness classes, personalized workout plans and guided meditations.

Technology

CDN
Amazon CloudFront
Server
Apache
CMS
WordPress
Analytics
  • Amplitude
  • Google Tag Manager
Third-party hosts loaded (9)
  • c0.wp.com×6
  • i0.wp.com×4
  • cdn.amplitude.com×3
  • www.googletagmanager.com×3
  • code.jquery.com×2
  • stats.wp.com×2
  • a.omappapi.com×1
  • ajax.googleapis.com×1
  • stackpath.bootstrapcdn.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2018-07-24
Expires
2026-07-24 65 days left
Updated
2025-07-25
Name servers
  • ns-1080.awsdns-07.org
  • ns-1715.awsdns-22.co.uk
  • ns-380.awsdns-47.com
  • ns-810.awsdns-37.net

DNS records live

NS
  • ns-1080.awsdns-07.org
  • ns-1715.awsdns-22.co.uk
  • ns-380.awsdns-47.com
  • ns-810.awsdns-37.net
MX
  • 10 aspmx.l.google.com
  • 20 alt1.aspmx.l.google.com
  • 30 alt2.aspmx.l.google.com
  • 40 aspmx2.googlemail.com
  • 50 aspmx3.googlemail.com
TXT
Show 6 TXT records
  • apple-domain-verification=VyFmOZRiGHXqVOGAjxEVK0e1WAoUxFUPtHZe8sSoJjc
  • apple-domain-verification=vZiKfHNAEuEJYYZJdpl0TAczTiMdfZcwTkV-vu-xl3A
  • canva-site-verification=ch7yn45QN0PjKY0er2pWWQ
  • knowbe4-site-verification=d875db3b07f9b269582d40110ceeb58d
  • linkedin-site-verification=fe9e1a20-fb70-40bc-8297-4b8abadf76dd
  • anthropic-domain-verification-q76knf=1x6oeg6rVu6DGWER9yjIqX8VS

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:amazonses.com include:shops.shopify.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:re+lklysv5ir6b@dmarc.postmarkapp.com; sp=reject; aspf=r;
policy: reject (enforced) · sp=reject
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCIGcfl5fQscoiqc1X9UbE+nScIL6WzoFHETSo1lVq7tZ2OPn7iLRuRrBFWy+7CjTyY4RSqeX7Mz6x06I4TwK…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2026-05-08 to 2026-11-22
Expires in 186 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://fitonapp.com/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
upgrade-insecure-requests

Links to (5)

Linked from (2)