indexo.dev

flipcx.com

.com crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 644 ms crawled 2026-06-01

US · 107.180.230.220 · AS26347 New Dream Network, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Voice AI Benefits for Retail and Transportation Brands
Description
Enhance your retail eCommerce and transportation brand with Voice AI technologies that improve customer experiences and engagement.
Language
en-US
Generator
Divi v.4.27.6
Canonical
https://flipcx.com/
Feeds

Open Graph

url
https://flipcx.com/
title
Flip - Voice AI
locale
en_US
site name
Flip
description
Enhance your retail eCommerce and transportation brand with Voice AI technologies that improve customer experiences and engagement.

Technology

Server
nginx
CMS
WordPress
jQuery
3.7.1
Analytics
  • Google Tag Manager
Cookie consent
  • Termly
Fonts
  • Google Fonts
Social widgets
  • Vimeo Embed
Third-party hosts loaded (10)
  • js.hsforms.net×7
  • secure.gravatar.com×6
  • fonts.googleapis.com×4
  • www.googletagmanager.com×4
  • js.hs-scripts.com×2
  • maps.googleapis.com×2
  • meet.jit.si×2
  • p.usestyle.ai×2
  • app.termly.io×1
  • player.vimeo.com×1

Social

Contact

Email
Phone

Registration

Registrar
Amazon Registrar, Inc.
Created
2022-06-07
Expires
2027-06-07 368 days left
Updated
2026-05-16
Name servers
  • ns-1225.awsdns-25.org
  • ns-1840.awsdns-38.co.uk
  • ns-291.awsdns-36.com
  • ns-877.awsdns-45.net

DNS records live

NS
  • ns-1225.awsdns-25.org
  • ns-1840.awsdns-38.co.uk
  • ns-291.awsdns-36.com
  • ns-877.awsdns-45.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • hubspot-domain-verification=MTE3NWI0MDQtOWZmMi00MjU5LThlNmItMzYxNGYwOTcyYmU3
  • pylon-domain-verification-3x89j0=rHsDtqKMXzWjdjowMcSJomxvz
  • zoom-domain-verification=ZOOM_verify_ebe9365ce5f54e95bb393fc7a9fc02bb
Verified for
  • Cisco
  • Microsoft 365
  • MongoDB

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:7825174.spf03.hubspotemail.net ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc-reports@flipcx.com
policy: quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43t9/FR1QZPwNiRPeQ8NA6eRSRVhqQEXKmSbgNVvqs9FCbqGj23A6TQzcObIKGnpE3oxq+iw1jTDrH…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFpENeZf6NkqhXXzNvZOANVO35otRXUJLqvSAb/uunbpUiFPm/RwFm4Lk6jOkMcVNDxC49LeGfKMoWKxTj…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhW3ODRPv4plLNkGovuFfVOHo68iHysvLKeZ1Y9jm9XzgimWtlZK12JzAH0IWCceqvqozhuIn5Jycbr/L8…
selectors probed

Certificate (current)

R12
from 2026-05-19 to 2026-08-17
Expires in 74 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://flipcx.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin, no-referrer-when-downgrade
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' https: data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https:; font-src 'self' data: https:; frame-src 'self' https:; worker-src 'self' blob:; connect-src 'self' https: https://forms.hsforms.com https://api.hsforms.com wss://ws.hotjar.com https://ws.hotjar.com; object-src 'none'; base-uri 'self'; form-action 'self' https://forms.hsforms.com https://api.hsforms.com; upgrade-insecure-requests;, default-src * 'unsafe-inline' 'unsafe-eval' data: blob:;
strict-transport-security
max-age=63072000, max-age=31536000;
cross-origin-opener-policy
unsafe-none
cross-origin-embedder-policy
unsafe-none; report-to='default'
cross-origin-resource-policy
cross-origin

Links to (9)

Linked from (1)