indexo.dev

hospitalpricedisclosure.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-19 · ok HTTP/1.1 200 831 ms crawled 2026-05-07

US · 40.71.11.159 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
HospitalPriceDisclosure.com

Registration

Registrar
Dynadot Inc
Created
2020-07-28
Expires
2028-07-28 799 days left
Updated
2025-06-02
Name servers
  • ns1-09.azure-dns.com
  • ns2-09.azure-dns.net
  • ns3-09.azure-dns.org
  • ns4-09.azure-dns.info

DNS records live

NS
  • ns1-09.azure-dns.com
  • ns2-09.azure-dns.net
  • ns3-09.azure-dns.org
  • ns4-09.azure-dns.info
TXT
  • 5yrrdcncpt9s5ml37ckwx4kbngdvy7d6

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-10-03 to 2026-11-04
Expires in 167 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://hospitalpricedisclosure.com/error/default.htm

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
sameorigin
x-content-type-options
nosniff
content-security-policy
object-src 'none'; default-src 'self';font-src 'self';img-src * data:;script-src 'self' 'unsafe-inline' 'unsafe-eval';style-src 'self' 'unsafe-inline' 'unsafe-eval';
strict-transport-security
max-age=31536000;includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
same-origin
cross-origin-resource-policy
same-origin

Linked from (9)