indexo.dev

heyoo.ai

.ai crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 642 ms crawled 2026-06-02

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Heyoo | Employee Advocacy and Thought Leadership Platform
Description
Turn employees and leaders into authentic LinkedIn voices with personalised post suggestions, managed executive posting and LinkedIn analytics that prove ROI.
Language
en
Canonical
https://www.heyoo.ai

Open Graph

url
https://www.heyoo.ai
title
Heyoo | Employee Advocacy and Thought Leadership Platform
site name
Heyoo
description
Turn employees and leaders into authentic LinkedIn voices with personalised post suggestions, managed executive posting and LinkedIn analytics that prove ROI.

Technology

CDN
Vercel
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (5)

  • cdn.cookiehub.eu×2
  • api.factors.ai×1
  • api.gleap.io×1
  • app.factors.ai×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
Tucows Domains Inc.
Created
2023-05-26
Expires
2027-05-26 355 days left
Updated
2026-04-23
Name servers
  • ns1.vercel-dns.com
  • ns2.vercel-dns.com

DNS records live

NS
  • ns1.vercel-dns.com
  • ns2.vercel-dns.com
MX
  • 1 smtp.google.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:amazonses.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:re+62313d727ba4@inbound.dmarcdigests.com
policy: quarantine
DKIM
  • mail: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0X10+AT2GPpZQKdaNn7Q3pZFsfEzlyInjHJ5cfcf0zjq0SjB1sKFpVs5bCvZVBRYJDPl56WTMBAqP…
selectors probed

Certificate (current)

R13
from 2026-05-06 to 2026-08-04
Expires in 60 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.heyoo.ai/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://*.googletagmanager.com https://*.google-analytics.com https://www.google.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://cdn.cookiehub.eu https://snap.licdn.com https://*.gleap.io https://*.factors.ai https://vercel.live; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: blob: https:; connect-src 'self' https://www.googletagmanager.com https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://stats.g.doubleclick.net https://px.ads.linkedin.com https://*.linkedin.com https://snap.licdn.com https://*.gleap.io wss://ws.gleap.io https://*.factors.ai https://vitals.vercel-insights.com https://vercel.live wss://ws-us3.pusher.com; frame-src 'self' https://www.googletagmanager.com https://*.gleap.io https://www.youtube.com https:/
strict-transport-security
max-age=63072000

Links to (1)

Linked from (1)