invitem.io

.io crawl

First seen 2026-04-30 · Last seen 2026-05-08 · ok HTTP/1.1 200 2704 ms crawled 2026-05-08

GB · 20.77.58.88 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

Invitem – Free Sport Management App, Club, Team and Social Event

Language

en-US

Generator

WordPress 6.9.4

Canonical

https://www.invitem.io/

Feeds

Open Graph

url: https://www.invitem.io
title: Invitem - Free Sport Management App, Club, Team and Social Event
site name: Invitem
description: Invitem is the Free Sport, Club and Social Event Organising App used by Teams Worldwide, get the App and Organise the Simple Way.

Technology

Server: Apache
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×6
fonts.gstatic.com×1
gmpg.org×1
www.google.com×1

Social

DNS records live

NS

ns-cloud-c1.googledomains.com
ns-cloud-c2.googledomains.com
ns-cloud-c3.googledomains.com
ns-cloud-c4.googledomains.com

MX

10 mx2.hostinger.com
5 mx1.hostinger.com

TXT

google-site-verification=HNJJoZkSAloYiw-ZdP9ymHyfwXutC2LS3Qm82-ALsW8
openai-domain-verification=dv-Uwm6Y6fvUAeyScn6G5Grxg0c
google-site-verification=n0ZgYR0uQFy-lLeEGQ0fMedwZyVBCRng099ieNg6pGk

Email authentication strong

SPF

v=spf1 include:_spf.mail.hostinger.com include:sendersrv.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:invitem-dmarc@invitem.io

policy: reject (enforced) · sp=none

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

from 2026-03-19 to 2026-06-17

Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://www.invitem.io/

present

permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (18)

Linked from (1)

startuptrusted.com×1