indexo.dev

harvey.ai

.ai crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1744 ms crawled 2026-05-18

US · 76.76.21.21 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Harvey | AI software for legal and professional services
Description
Legal AI tailored for leading law firms and corporate legal teams worldwide. Harvey streamlines contract analysis, due diligence, compliance, and litigation.
Language
en
Canonical
https://www.harvey.ai
Translations
  • en

Open Graph

url
https://www.harvey.ai
title
Harvey – Professional Class AI
site name
Harvey
description
Harvey is the platform built to meet the standards of the world’s leading professional service firms.

Technology

CDN
Vercel
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • cdn.sanity.io×84
  • transcend-cdn.com×1
  • www.googletagmanager.com×1

Social

Contact

Address
st a DemoCopyright © 2026

Registration

Registrar
MarkMonitor Inc.
Created
2017-12-15
Expires
2033-04-11 2518 days left
Updated
2025-10-13
Name servers
  • ns-cloud-b1.googledomains.com
  • ns-cloud-b2.googledomains.com
  • ns-cloud-b3.googledomains.com
  • ns-cloud-b4.googledomains.com

DNS records live

NS
  • ns-cloud-b1.googledomains.com
  • ns-cloud-b2.googledomains.com
  • ns-cloud-b3.googledomains.com
  • ns-cloud-b4.googledomains.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 26 TXT records
  • openai-domain-verification=dv-1QAiLsvKdiVoom3v7p2DXKcn
  • ZOOM_verify_u5E6Jqor9cawu3d4sykrXi
  • sfcc4rf53kb71z89zt7z4qpr3zqp081p
  • google-site-verification=vR7vJPdISvyVNba9I3JVaiCUIoCbqt0IIXq3ZjQak7E
  • google-site-verification=vlBuw3EgYFuAx7yvi0fBc6CfJlCTfHv_0Eg69qlX2wE
  • adobe-idp-site-verification=c158b49da70fad0f0d4a93e87ac1160dd117fab82a26b9209351a5c2bb179d88
  • google-site-verification=AyLMsoJ2pyqj5rUtvkEG4up3jdSVIuKVO3W6LriJQH4
  • ms-domain-verification=8ec3f6b6-cc43-4987-96ab-cf3d954561c8
  • coda-verification=feb68bf9-3e57-418f-acda-de696bb201f3
  • slack-domain-verification=HaYbAw7aZsmf1IDBT5lPBoe6tL5sLFWyQwtRDYCK
  • google-site-verification=MmkJ5RhEGWHqZ6n5uKYNxEBmfmRu6qUdmkeL42pW7hE
  • linear-domain-verification=2zfzxamm6sf2
  • serval-domain-verification-mzg0yk=xMptQXOxMlw2ihIFFOAhM5mtI
  • mixpanel-domain-verify=6da3724a-87d2-4e0c-94d1-9ded8add9832
  • sprout-social-dfaca395-cb78-477e-b495-4179f8016a37
  • jamf-site-verification=vRUAWOCGcjKl00xo9IGLFQ
  • figma-domain-verification=b1d25d32af0835a2b7451f7787b73dfdc5a4f765780bc516207ee450e3d9dbb2-1776358659
  • asv=3676ac7433a22e25277a3f4e3e287fb2
  • MS=ms10652809
  • TAILSCALE-wq9xY198UW2R8o23KfZz
  • apple-domain-verification=QoA4ivawqABge0j0
  • cursor-domain-verification-nmam0n=DVaFNOZoTKluvNfI6eYusO4U8
  • airtable-verification=b469c0bf5bd53cc106195f7eb75f447d
  • atlassian-domain-verification=ysdL8I30DEd5QvfBZgkFYG41G32KaEYUSLgkXLCAuKQENMVNITvrLRipf9tSYedm
  • anthropic-domain-verification-1607fy=pzFHM9it5V9DM3rDptLyjuZFb
  • notion-domain-verification=YEaw5ItXWv413Bj86xc5L3Ar3CpsbzZTSdRkBTEBBZd

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:_spf.salesforce.com include:spf.protection.outlook.com include:mktomail.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; adkim=r; aspf=r; fo=0; rua=mailto:zl48vbmd@ag.eu.dmarcian.com,mailto:dmarcreports@harvey.ai; ruf=mailto:zl48vbmd@fr.eu.dmarcian.com,mailto:dmarcreports@harvey.ai
policy: reject (enforced) · sp=reject
DKIM
  • google: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPz8f48BUyYPITIQEGNRC25WIYZzi5ZosR4WuImfHA32n0M0pX0SBzHdzrUFIiko2plrQxxKTkrHcB27…
selectors probed

Certificate (current)

R13
from 2026-04-22 to 2026-07-21
Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.harvey.ai/

present
  • strict-transport-security
  • content-security-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; media-src 'self' data: blob: *;
strict-transport-security
max-age=63072000; includeSubDomains;

Links to (6)

Linked from (14)