indexo.dev

getcroissant.com

.com crawl

First seen 2026-05-04 · Last seen 2026-05-11 · ok HTTP/1.1 200 1109 ms crawled 2026-05-11

US · 188.114.96.3 · AS13335 Cloudflare, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Croissant | Distributed Workspace Infrastructure
Description
Govern workspace access, spend, and policy in one platform. Give distributed teams instant workspace in 700+ cities with real-time controls and reporting.
Language
en
Canonical
https://www.getcroissant.com/

Open Graph

url
https://www.getcroissant.com/
title
Croissant | Distributed Workspace Infrastructure
description
Govern workspace access, spend, and policy in one platform. Give distributed teams instant workspace in 700+ cities with real-time controls and reporting.

Technology

CDN
Amazon CloudFront
Server
AmazonS3
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • js-eu1.hs-scripts.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
NameCheap, Inc.
Created
2015-05-15
Expires
2031-05-15 1820 days left
Updated
2025-04-23
Name servers
  • cesar.ns.cloudflare.com
  • dana.ns.cloudflare.com

DNS records live

NS
  • cesar.ns.cloudflare.com
  • dana.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • lovat-verification=c1c4c02ad55854f980ba20e670604a008a27e1aba35fab695f608f424ada4179
Verified for
  • Google

Email authentication strong

SPF
v=spf1 include:spf.tipalti.com include:u1793980.wl231.sendgrid.net include:_spf.google.com include:spf.privateemail.com include:amazonses.com include:146864230.spf02.hubspotemail.net -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email
policy: quarantine
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQJzmaQtZpF2rj2c90MrpPfs1NR/KdT4w9EMtN0gBSogzjzyDhJoCDI/ViF0N8n1xTFTAbqPs/HP1lywyu…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC28r2KapD2CkVVv0V4rjMrnAAtyVtstGHuLItl1d2xp4JQlAba1xscddj4UV+4BQeLZXA9KJGSK4/RZ9EisA7lQR…
selectors probed

Certificate (current)

WE1
from 2026-03-19 to 2026-06-17
Expires in 28 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.getcroissant.com/

findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy

Links to (5)

Linked from (1)