goxoa.co
goxoa.co
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Shopify
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (9)
- cdn.shopify.com×7
- api.judge.me×1
- assets.gemcommerce.com×1
- cdn.judge.me×1
- cdn1.judge.me×1
- fonts.shopifycdn.com×1
- monorail-edge.shopifysvc.com×1
- static.klaviyo.com×1
- www.youtube.com×1
Social
DNS records live
- NS
-
- ns1.dns-parking.com
- ns2.dns-parking.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
klaviyo-site-verification=Tgkkri
- Verified for
-
- Brevo
Email authentication partial
- SPF
-
v=spf1 include:_spf.google.com include:mail.zendesk.com include:one.zoho.eu ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.compolicy: none (monitoring only) - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaiqJhUW1W/s6HeCXJpJwkrC8EeWE5dMPp6nPhJSO9YnbnVwVqI/OBY6MnplbR+5QyZe2RRwvzsnPc… - mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed - google:
Certificate (current)
E8
Expires in 57 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- short HSTS max-age
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;- strict-transport-security
max-age=7889238