hackreactor.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- OneTrust
- Fonts
-
- Font Awesome
- Google Fonts
Third-party hosts loaded (10)
- fonts.googleapis.com×5
- www.galvanize.com×3
- www.googletagmanager.com×2
- assets-global.website-files.com×1
- cdn.cookielaw.org×1
- cdn.jsdelivr.net×1
- d92mrp7hetgfk.cloudfront.net×1
- fonts.gstatic.com×1
- gmpg.org×1
- use.fontawesome.com×1
Social
Contact
- Phone
- Address
- 119 Nueces St, 78701, Austin, TX, US
Registration
- Registrar
- NameCheap, Inc.
- Created
- 2013-01-19
- Expires
- 2027-01-19 244 days left
- Updated
- 2025-12-20
- Name servers
-
- dns1.registrar-servers.com
- dns2.registrar-servers.com
DNS records live
- NS
-
- dns1.registrar-servers.com
- dns2.registrar-servers.com
- MX
-
- 1 aspmx.l.google.com
- 10 aspmx2.googlemail.com
- 10 aspmx3.googlemail.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 6 TXT records
RYH-785-BVNfacebook-domain-verification=6vgdwgc2hugewqutldiww2pp7jpiy9google-site-verification=9V72646OGxqjGuGAlP2TIHIL8IRV73OBBBByZXK_YHYgoogle-site-verification=qx1GIzQEsRHWUWpq7Y6TGR41L0W97Rb8v7w0GwjRCsUpardot414112=d7863aaf158549bb3ac56717f8c4e8313cb7d9c5ef532ca671ac5732cac8b32aatlassian-domain-verification=pKSWwqe+VdR3Mh+QoA0+Rb/ew6MXYBNut5Ib11bypSjtw6HyDZRiq0WTgpLlzKKs
Email authentication weak
- SPF
-
v=spf1 include:mail.zendesk.com include:mg-spf.greenhouse.io include:aspmx.pardot.com include:sendgrid.net include:spf.mandrillapp.com include:_spf.google.com include:helpscoutemail.com include:customeriomail.com include:relay.mailchannels.net ~allsoftfail (~all) - DMARC
- not published
- DKIM
-
Show 5 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC9vCdhT7sgcK3K6udMy3sENCXBBfvq3uECscl20rSczxCDEMmqqfRbbmdpQGCvE4PQcCPrJN8v1J1Crusfc2… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCco48+tWUoBp5abEy2D06knP9mHhm0t0FgHF+j3hRCcnik/sZ0fJ2KYlVazvGAbnteYn8ePKfCotQ06vOs05oC+bSWjMa… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNqBsYOfE4TPu7j4CNH1mx2Hza1ONC2MJln1/RxkOy2x7vZJvJP8mqbfpqNgVBzpnW+rTkMKEUrKaYxpYc… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCsB9rUo2jbhVkbGggbKVzXI2Yf/jHlX74wMgoZ7uKzZoBu/zTdxnHTMgU/mq0+a6cqfXDLHSE17sp0NlhHoV9Iz… - smtpapi:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed - google:
Certificate (current)
E8
Expires in 46 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
autoplay=(), camera=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), publickey-credentials-get=(), usb=(), browsing-topics=()- x-content-type-options
nosniff- content-security-policy
default-src https: data: blob: wss://*.hotjar.com wss://*.crazyegg.com *.crazyegg.com wss://*.zohopublic.com; script-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; style-src https: data: 'unsafe-inline'; img-src data: https: 'unsafe-inline'; font-src data: https: 'unsafe-inline'; frame-ancestors 'self'; object-src 'self' blob; upgrade-insecure-requests; media-src 'self' blob: data: https:;- strict-transport-security
max-age=31536000; preload