httptiger.org

.org crawl

First seen 2026-04-27 · Last seen 2026-05-17 · ok HTTP/1.1 200 1390 ms crawled 2026-05-05

US · 18.165.140.106 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: HTTP Status Codes Reference - Complete Guide for Developers | HTTP Tiger
Description: The definitive HTTP status codes reference. Look up any HTTP response code, understand what it means, learn how to fix errors. 100+ codes explained with examples.
Language: en
Canonical: https://httptiger.org/

Open Graph

url: https://httptiger.org/
title: HTTP Status Codes - Complete Developer Reference | HTTP Tiger
site name: HTTP Tiger
description: The definitive guide to HTTP status codes. Look up any code, understand what it means, and learn how to fix errors.

Technology

CDN: Amazon CloudFront
Server: AmazonS3

Third-party hosts loaded (1)

snapitanalytics.com×1

Registration

Registrar

IONOS SE

Created

2026-01-20

Expires

2027-01-20 245 days left

Updated

2026-01-25

Name servers

ns-1420.awsdns-49.org
ns-1786.awsdns-31.co.uk
ns-370.awsdns-46.com
ns-551.awsdns-04.net

DNS records live

NS

ns-1420.awsdns-49.org
ns-1786.awsdns-31.co.uk
ns-370.awsdns-46.com
ns-551.awsdns-04.net

MX

10 inbound-smtp.us-east-1.amazonaws.com

Certificate (current)

Amazon RSA 2048 M04

from 2026-01-21 to 2027-02-20

Expires in 276 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://httptiger.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' blob: https://snapitanalytics.com https://accounts.google.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://js.stripe.com https://*.google.com https://*.googleapis.com https://*.gstatic.com https://unpkg.com https://cdn.tailwindcss.com https://api.web3forms.com https://www.googletagmanager.com https://sphinxagent.ai; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://accounts.google.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://unpkg.com; font-src 'self' https://fonts.gstatic.com https://cdnjs.cloudflare.com data:; img-src 'self' data: blob: https:; connect-src 'self' https: wss:; frame-src 'self' https://accounts.google.com https://js.stripe.com https://*.google.com; object-src 'none'; base-uri 'self'
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none