indexo.dev

fortunly.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-20 · ok HTTP/1.1 200 1087 ms crawled 2026-05-19

US · 104.26.5.227 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Fortunly: Making Finance Approachable | Homepage
Description
Fortunly brings you reviews of the top financial products. We also regularly publish guides and statistics on crucial topics related to finance and economy.
Language
en-us
Canonical
https://fortunly.com/
Translations
  • en ×3

Open Graph

url
https://fortunly.com/
title
Fortunly: Making Finance Approachable | Homepage
site name
Fortunly
description
Fortunly brings you reviews of the top financial products. We also regularly publish guides and statistics on crucial topics related to finance and economy.

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2019-05-27
Expires
2027-05-27 371 days left
Updated
2025-04-29
Name servers
  • dell.ns.cloudflare.com
  • kurt.ns.cloudflare.com

DNS records live

NS
  • dell.ns.cloudflare.com
  • kurt.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:cf576b7d217f4a9bb3c3129fade5878d@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-05 to 2026-07-04
Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://fortunly.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'self'; frame-ancestors 'self'; img-src 'self' data: https:; font-src 'self' data: https:; style-src 'self' 'unsafe-inline' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; connect-src 'self' https: wss://ws.hotjar.com; frame-src 'self' https://www.google.com https://recaptcha.google.com;
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (5)

Linked from (2)