hushtouch.com

.com crawl

First seen 2026-04-12 · Last seen 2026-04-12 · ok HTTP/1.1 200 1168 ms crawled 2026-05-20

US · 172.67.138.59 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector tech type landing page

HTML metadata

Title: AI Voice to Text for Mac | Hush Touch Dictation Software
Description: Hush Touch is voice-to-text for Mac that works exactly like Apple Dictation — just dramatically more accurate. Fully on-device, native feel, from $6.99/mo or $69.99 lifetime.
Language: en
Generator: Astro v5.17.1
Canonical: https://hushtouch.com/

Open Graph

url: https://hushtouch.com/
title: AI Voice to Text for Mac | Hush Touch Dictation Software
description: Hush Touch is voice-to-text for Mac that works exactly like Apple Dictation — just dramatically more accurate. Fully on-device, native feel, from $6.99/mo or $69.99 lifetime.

Technology

CDN: Cloudflare

Third-party hosts loaded (1)

www.facebook.com×1

Contact

Email

hush@hushtouch.com

Registration

Registrar

Cloudflare, Inc.

Created

2026-01-29

Expires

2027-01-29 253 days left

Updated

2026-01-29

Name servers

cosmin.ns.cloudflare.com
reza.ns.cloudflare.com

DNS records live

NS

cosmin.ns.cloudflare.com
reza.ns.cloudflare.com

MX

10 mx.zoho.com
20 mx2.zoho.com
50 mx3.zoho.com

Verified for

Google

Email authentication partial

SPF: v=spf1 include:zohomail.com ~all
softfail (~all)
DMARC: v=DMARC1; p=none; rua=mailto:e75f158df6a84f6baf52a1e7225af546@dmarc-reports.cloudflare.net,mailto:hush@hushtouch.com; ruf=mailto:hush@hushtouch.com; sp=none; adkim=r; aspf=r
policy: none (monitoring only) · sp=none
DKIM: no key found at common selectors

Certificate (current)

WE1

from 2026-04-04 to 2026-07-03

Expires in 43 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://hushtouch.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: geolocation=(), microphone=(self), camera=(), attribution-reporting=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://connect.facebook.net https://static.cloudflareinsights.com https://googleads.g.doubleclick.net https://www.googleadservices.com; frame-src 'self' https://www.googletagmanager.com; connect-src 'self' wss://stt-rt.soniox.com https://www.facebook.com https://www.google.com https://www.google.com.ph https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com; img-src 'self' data: https://www.facebook.com https://www.googletagmanager.com https://www.google.com https://www.google.com.ph https://www.googleadservices.com https://googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline'; font-src 'self' data:; upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin

Linked from (1)

curlship.com×1