indexo.dev

frctlaudio.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-13 · ok HTTP/1.1 200 3386 ms crawled 2026-05-16

US · 99.83.231.61 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
FRCTL Audio
Description
VST plugins for music producers and sound designers. Dark, techy audio tools for the creative producer.
Language
en

Technology

CDN
Netlify
CMS
Next.js

Registration

Registrar
Cloudflare, Inc.
Created
2026-01-19
Expires
2027-01-19 245 days left
Updated
2026-01-19
Name servers
  • cheryl.ns.cloudflare.com
  • devin.ns.cloudflare.com

DNS records live

NS
  • cheryl.ns.cloudflare.com
  • devin.ns.cloudflare.com
MX
  • 40 route1.mx.cloudflare.net
  • 84 route3.mx.cloudflare.net
  • 89 route2.mx.cloudflare.net
TXT
  • brevo-code:da8e390a47d206d292f70588f6faaf24
  • google-site-verification=Sh2z-5lRQA-M-sRFHTJCUuE8AfNKrVHmswPXZ_9V__s

Email authentication partial

SPF
v=spf1 include:_spf.mx.cloudflare.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-03-20 to 2026-06-18
Expires in 30 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://frctlaudio.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.paddle.com https://assets.gumroad.com https://gumroad.com https://*.clarity.ms; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob: https://frctlaudio.com https://*.paddle.com https://*.gumroad.com https://i.ytimg.com https://*.clarity.ms https://c.bing.com; connect-src 'self' https://*.paddle.com https://*.supabase.co https://api.brevo.com https://*.gumroad.com https://*.r2.cloudflarestorage.com https://*.clarity.ms https://c.bing.com; frame-src 'self' https://*.paddle.com https://gumroad.com https://www.youtube.com; media-src 'self' blob:; upgrade-insecure-requests
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (2)

Linked from (1)