indexo.dev

insidethevolcano.com

.com crawl

First seen 2026-05-10 · Last seen 2026-05-16 · ok HTTP/1.1 200 1525 ms crawled 2026-05-16

US · 76.76.21.21 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Inside the Volcano | InsideTheVolcano.com
Description
Take a Journey towards the Center of the Earth in a unique Volcano Tour at Thrihnukagigur Volcano in Iceland.
Language
en-US
Canonical
https://insidethevolcano.com

Open Graph

title
Inside the Volcano | InsideTheVolcano.com
locale
en-us
site name
Inside the Volcano
description
Take a Journey towards the Center of the Earth in a unique Volcano Tour at Thrihnukagigur Volcano in Iceland.

Technology

CDN
Vercel
CMS
Next.js

Social

Contact

Email
Phone

Registration

Registrar
PDR Ltd. d/b/a PublicDomainRegistry.com
Created
2010-11-19
Expires
2026-11-19 182 days left
Updated
2025-11-06
Name servers
  • gail.ns.cloudflare.com
  • guy.ns.cloudflare.com

DNS records live

NS
  • gail.ns.cloudflare.com
  • guy.ns.cloudflare.com
MX
Show 7 MX records
  • 10 aspmx.l.google.com
  • 20 alt1.aspmx.l.google.com
  • 20 alt2.aspmx.l.google.com
  • 30 aspmx2.googlemail.com
  • 30 aspmx3.googlemail.com
  • 30 aspmx4.googlemail.com
  • 30 aspmx5.googlemail.com
Verified for
  • Google

Email authentication weak

SPF
v=spf1 a ip4:82.221.36.75 a:mx2.skyrr.is ip4:82.221.39.36 include:aspmx.googlemail.com include:_spf.1984.is ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-17 to 2026-07-16
Expires in 56 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://insidethevolcano.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self' 'unsafe-inline' *.googletagmanager.com *.google-analytics.com cookiehub.net *.cookiehub.eu *.cookiehub.com *.doubleclick.net plausible.io *.google.com *.gstatic.com *.bokun.io polyfill.io chatbot-api.menni.ai *.facebook.net ; img-src 'self' *.unsplash.com blob: i.vimeocdn.com *.prismic.io prismic-io.s3.amazonaws.com *.doubleclick.net *.google.is *.google.com *.googletagmanager.com *.facebook.com *.google-analytics.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com cookiehub.net *.cookiehub.com *.cookiehub.eu *.typekit.net; font-src 'self' fonts.gstatic.com use.typekit.net; frame-src www.youtube-nocookie.com player.vimeo.com *.google.com *.bokun.io *.doubleclick.net *.googletagmanager.com *.menni.ai; media-src 'self' *.picsum.photos prismic-io.s3.amazonaws.com; connect-src 'self' ws: wss: vimeo.com plausible.io *.google-analytics.com *.analytics.google.com *.googletagmanager.com ds.cookiehub.net coo
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (3)

Linked from (1)