indexo.dev

go2redeem.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-03 · ok HTTP/1.1 200 620 ms crawled 2026-05-07

US · 3.174.113.52 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Language
en

Technology

CDN
Amazon CloudFront
Server
nginx
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×2
  • code.jquery.com×1
  • fonts.gstatic.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2018-05-22
Expires
2026-05-22 1 day left
Updated
2025-05-23
Name servers
  • ns-1306.awsdns-35.org
  • ns-1949.awsdns-51.co.uk
  • ns-304.awsdns-38.com
  • ns-892.awsdns-47.net

DNS records live

NS
  • ns-1306.awsdns-35.org
  • ns-1949.awsdns-51.co.uk
  • ns-304.awsdns-38.com
  • ns-892.awsdns-47.net
MX
  • 1 iatai.in.tmes.trendmicro.com
  • 20 inbound-smtp.us-east-1.amazonaws.com
TXT
  • SFMC-ajbTRTwCwRVE14_Kt0FAEjNz10T1QgPsvai052gj
  • mandrill_verify.GQantlTIlAKYX-F__hYTvg
  • tmes=236260d4cd01125ca5610d26d0287233
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; pct=100; rua=mailto:admin@wearenovae.com; ruf=mailto:admin@wearenovae.com; sp=none; aspf=r;
policy: quarantine · sp=none
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCW/4DGWLc97KJ6yF8ytI/QNnOXojwDM+tQxQjSfrcVb0ovYd7gFTKOotbp9X4AmXdhRlhj3CT4KmpiiOzNPw…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2026-01-09 to 2027-02-07
Expires in 262 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://go2redeem.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP uses wildcard sources
  • weak frame protection
Header values
referrer-policy
no-referrer
x-frame-options
ALLOW-FROM *.go2redeem.com go2redeem.com
permissions-policy
camera 'none'; fullscreen 'none'; geolocation 'none'; microphone 'none'; payment 'none'; speaker 'none'; usb 'none'; vibrate 'none'; vr 'none';
x-content-type-options
nosniff
content-security-policy
default-src 'self' *.go2redeem.com *.akamaized.net *.allegrarewards.com *.alle2020.com *.milesbynovae.com *.hotjar.com https://download-video-ak.vimeocdn.com https://player.vimeo.com https://vod-progressive.akamaized.net https://junipertravel.allegrarewards.com https://www.google-analytics.com *.lpsnmedia.net *.liveperson.net https://wearenovae.com https://cdnjs.cloudflare.com https://uniquetransactionws.allegrarewards.com https://universalws.allegrarewards.com; font-src 'self' https://cdn.jsdelivr.net https://script.hotjar.com fonts.gstatic.com https://fonts.googleapis.com; img-src 'self' data: *.alle2020.com https://logos.alle2020.com *.google.com *.google.com.co https://logos.fmtc.co https://s3.us-east-2.amazonaws.com https://logos.miles.blue https://images.allegraplatform.com https://player.vimeo.com https://vod-progressive.akamaized.net https://wearenovae.com https://*.lpsnmedia.net https://www.google-analytics.com https://i.travelapi.com https://media.activitiesbank.com https://s
strict-transport-security
max-age=31536000; includeSubdomains

Linked from (1)