freshdesignstudio.com

.com crawl

First seen 2026-04-16 · Last seen 2026-05-17 · ok HTTP/1.1 200 1083 ms crawled 2026-05-11

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Fresh Design Studio | Digital Agency for Growth-Stage Companies
Description: Bold web experiences and precision advertising that turn growth-stage companies into market leaders. Strategy, design, and technology under one roof.
Language: en

Technology

CDN: Vercel
CMS: Next.js

Contact

Phone

(347) 470-8211

Address

St Ste 525-4369

Registration

Registrar

NameCheap, Inc.

Created

2009-05-08

Expires

2027-05-08 352 days left

Updated

2026-04-08

Name servers

dns1.registrar-servers.com
dns2.registrar-servers.com

DNS records live

NS

dns1.registrar-servers.com
dns2.registrar-servers.com

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Email authentication weak

SPF

v=spf1 include:_spf.google.com include:hubspot.com include:_spf.freshbooks.com ~all

softfail (~all)

DMARC

not published

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vHxatDk2/EviGT6+j1uroZ136/m+Q2OyEZ0m5kQVWxxRTiqn4Sgfqgux6CVNr5LOysQmTw0oCR6oR…

selectors probed

Certificate (current)

R12

from 2026-03-24 to 2026-06-22

Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.freshdesignstudio.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://tally.so https://static.hsappstatic.net; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob: https://ui-avatars.com; frame-src https://tally.so https://meetings.hubspot.com; connect-src 'self' https://tally.so https://static.hsappstatic.net; media-src 'self' https://freshdesignstudio.com
strict-transport-security: max-age=63072000; includeSubDomains; preload