horsai.co

.co crawl

First seen 2026-04-15 · Last seen 2026-05-13 · ok HTTP/1.1 200 724 ms crawled 2026-05-10

US · 3.164.206.101 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector b2b services type homepage

HTML metadata

Title: Horsaï
Description: Save time and energy, Horsaï help you to focus on your core business : Horses and theirs Riders.

Technology

CDN: Amazon CloudFront
Server: AmazonS3

Fonts

Google Fonts

Third-party hosts loaded (3)

fonts.googleapis.com×4
fonts.gstatic.com×1
www.facebook.com×1

DNS records live

NS

ns-1444.awsdns-52.org
ns-1954.awsdns-52.co.uk
ns-387.awsdns-48.com
ns-676.awsdns-20.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Brevo
Google

Email authentication partial

SPF

v=spf1 include:spf.mailjet.com ?all

neutral (?all)

DMARC

v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com

policy: none (monitoring only)

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2025-12-05 to 2027-01-04

Expires in 228 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://horsai.co/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.forrider.com https://forrider.com https://*.grandprix-events.com https://grandprix-events.com
strict-transport-security: max-age=31536000; includeSubDomains