gab.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1061 ms crawled 2026-05-18

US · 104.16.114.65 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Gab.com - Gab Social
Description: The Home of Free Speech and the Parallel Economy. Join our community where people who support family, faith and free speech can speak freely and shop at businesses who share their values.
Language: en

Open Graph

url: https://gab.com/
title: Gab.com
site name: Gab.com
description: The Home of Free Speech and the Parallel Economy. Join our community where people who support family, faith and free speech can speak freely and shop at businesses who share their values.

Technology

CDN: Cloudflare

Third-party hosts loaded (1)

assets.armanet.us×1

Registration

Registrar

Cloudflare, Inc.

Created

1998-12-08

Expires

2029-12-07 1297 days left

Updated

2024-03-11

Name servers

elmo.ns.cloudflare.com
sue.ns.cloudflare.com

DNS records live

NS

elmo.ns.cloudflare.com
sue.ns.cloudflare.com

MX

10 mail.protonmail.ch
20 mailsec.protonmail.ch

TXT

Show 4 TXT records

ca3-56e3739f7f644cdaaa0e7edc903cf648
google-site-verification=I40VLOSX3s7i4a7Smh-4JaLHVESDyNvD5RF6HGg8Ih8
postman-domain-verification=23fc5fd6e1d939f434ac805949855b2a308d8bf7d885f9b3ca07305283ea7a132b85e000d7dd8d1732589ecb29099d1b2b895ab1a7a2cf316d27fcf287832790
protonmail-verification=96ca5019e36fc3a6dc5c4399efabe68792e55cc7

Email authentication strong

SPF

v=spf1 mx a a:mailer.gab.com ip4:72.35.70.68 ip4:72.35.70.69 ip4:72.35.70.70 include:_spf.protonmail.ch ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:news@gab.com; ruf=mailto:news@gab.com; sp=none; aspf=s; ri=86400

policy: reject (enforced) · sp=none

DKIM

default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDM1hkYg+BZfk9NYsc5r/y1696nKuHYpluDhbzV64PfmKlROsufbBdmvrQpdX/yWUg3Sqc7qXB0/tTsj82V9r…

selectors probed

Certificate (current)

WE1

from 2026-05-10 to 2026-08-08

Expires in 81 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://gab.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: base-uri 'none'; default-src 'none'; frame-ancestors 'self' https://*.gab.com https://challenges.cloudflare.com; font-src 'self' data: blob: https://gab.com; img-src 'self' https: data: blob: https://gab.com http://nginx-vm.shared *; style-src 'self' 'unsafe-inline' https://gab.com *; media-src 'self' https: data: https://gab.com blob:; frame-src 'self' https: https://challenges.cloudflare.com; manifest-src 'self' https://gab.com; worker-src 'self' blob: https://gab.com; connect-src 'self' blob: https://gab.com wss://gab.com https://*.gab.com https://srv.armanet.us https://engine.4dsply.com https://googleads4.g.doubleclick.net https://harvester.muscula.com/js https://pagead2.googlesyndication.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://gab.com https://*.gab.com https://challenges.cloudflare.com https://assets.armanet.us https://cdnjs.cloudflare.com https://engine.4dsply.com https://www.googletagservices.com https://ad.doubleclick.net https://pagead2.googlesyndication.c
strict-transport-security: max-age=0; preload

Links to (2)

dissenter.com×4
gab.ai×4