floqast.app

.app crawl

First seen 2026-05-04 · Last seen 2026-05-04 · ok HTTP/1.1 200 4273 ms crawled 2026-05-11

US · 52.38.232.140 · AS16509 Amazon.com, Inc.

Classifying

HTML metadata

NS

MX

TXT

Show 5 TXT records

SPF

v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email include:mailgun.org ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email

policy: none (monitoring only)

DKIM

k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDONsC7TwszOVKO702nbqeIoBv/9jjqx0lEjPdL0+9r+dUptQBZcTqceCaBdJmrGkLNUzDWJ/lNABGbnj51TS+2VVrV3tX…

selectors probed

Amazon RSA 2048 M04

from 2026-04-02 to 2026-10-17

Expires in 151 days

Header hygiene 85/100 Checked live page: https://www.floqast.app/login

present

findings

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: script-src 'self' blob: https://js.pusher.com https://sockjs-mt1.pusher.com https://stats.pusher.com https://static.floqast.app https://static.floqast.com https://services.floqast.app https://resource-maps.floqast.app https://fq-production-internal-ip-restricted.s3-us-west-2.amazonaws.com https://super-assets.floqast.app *.aptrinsic.com https://cdnjs.cloudflare.com 'wasm-unsafe-eval' *.split.io 'sha256-C7d5o70ttR1JoqTWMb2B136SH86g8sTU6bx8hhug0i4=';style-src 'self' 'unsafe-inline' https://fonts.googleapis.com http://static.floqast.app https://static.floqast.com https://services.floqast.app https://fq-production-internal-ip-restricted.s3-us-west-2.amazonaws.com https://super-assets.floqast.app https://fonts.gstatic.com *.aptrinsic.com;img-src 'self' blob: data: https://s3.amazonaws.com https://s3-us-west-2.amazonaws.com https://static.floqast.app https://services.floqast.app https://static.floqast.com https://fq-production-internal-ip-restricted.s3-us-west-2.amazonaws.com https://super-a
strict-transport-security: max-age=31536000; includeSubDomains