hexraa.com

.com crawl

First seen 2026-05-12 · Last seen 2026-05-18 · ok HTTP/1.1 200 3896 ms crawled 2026-05-18

US · 209.74.68.30 · AS22612 Namecheap, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Hexraa® >> Web Hosting - Best Website Hosting
Description: Hexraa® - Best web hosting in India starting at $35/month. Get premium shared hosting, reseller hosting, student hosting, and dedicated servers with free domain, SSL certificate, 99.9% uptime, 24/7 support, and AMD EPYC servers. Trusted by 200+ customers.
Language: en
Canonical: https://www.hexraa.com

Open Graph

url: https://www.hexraa.com
title: Hexraa® >> Web Hosting - Best Website Hosting
site name: Hexraa®
description: We offer premium affordable shared hosting, best hosting for resellers, cost-effective cloud hosting with free domain names, Web Designing service, and Integration

Technology

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (6)

cdnjs.cloudflare.com×5
cdn.jsdelivr.net×4
code.jquery.com×1
emt-7s6campmj.topmailer.net×1
fonts.googleapis.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

NameCheap, Inc.

Created

2025-07-25

Expires

2027-07-25 430 days left

Updated

2025-11-20

Name servers

coco.bunny.net
kiki.bunny.net

DNS records live

NS

coco.hexraa.net
kiki.hexraa.com

MX

10 mx00.ionos.com
10 mx01.ionos.com

TXT

042d0a51-9d6b-4e21-bc6c-50dbbbc562e0

Verified for

Google

Email authentication partial

SPF: v=spf1 a a:spf.managedns.org include:_spf-us.ionos.com include:zeptomail.net include:spf.shared.spaceship.host ~all
softfail (~all)
DMARC: v=DMARC1; p=none; rua=mailto:206ff20565a44e52a2841cc369a62b8c@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-03-26 to 2026-06-24

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.hexraa.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://cdn.ckeditor.com/4.8.0/full-all/ckeditor.js https://cdnjs.cloudflare.com https://code.jquery.com https://fonts.googleapis.com https://fonts.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://embed.tawk.to https://*.tawk.to https://cdn-cookieyes.com https://*.cookieyes.com https://widgets.upmind.app; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://fonts.googleapis.com https://*.tawk.to https://cdn-cookieyes.com https://*.cookieyes.com; font-src 'self' https://fonts.gstatic.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com; img-src 'self' data: https: http:; connect-src 'self' https: http: wss://*.tawk.to https://cdn-cookieyes.com https://*.cookieyes.com; frame-src 'self' https: http: https://*.tawk.to https://cdn-cookieyes.com https://*.cookieyes.com; worker-src 'self' blob:;
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (3)

Linked from (1)

your-servers.com×1