indexo.dev

instacard.co

.co crawl

First seen 2026-05-10 · Last seen 2026-05-10 · ok HTTP/1.1 200 1515 ms crawled 2026-05-16

US · 20.49.104.25 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

Technology

Server
Microsoft-IIS

DNS records live

NS
  • ns1-02.azure-dns.com
  • ns2-02.azure-dns.net
  • ns3-02.azure-dns.org
  • ns4-02.azure-dns.info
TXT
  • facebook-domain-verification=3abylhebr0bfo70uv7b6wj9ki5u4nc
  • google-site-verification=dj1LO6pRlMRPLuw9Z5aDbYI6eG-c_23cZ4AYmSi4fU4

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOYRy4NubCcJowiJMR+c3b+Ct+4Vfm4Z35qMxbf+3QS7UF3cZQ8ncXtQFIbpkzhrV6QRW72gYQrtFFp8Xw…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzPEvXdbr73u17CpP8khEbusaXal3j0syfsmlPdNxh/lMwjQskVXnP1ed2naLLJVzjQUTZEi9iYSlThOfnhnO+RG…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-02-22 to 2026-08-23
Expires in 95 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://instacard.co/

present
  • strict-transport-security
findings
  • short HSTS max-age
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
strict-transport-security
max-age=2592000

Linked from (1)