ipstudio.co

.co crawl

First seen 2026-04-16 · Last seen 2026-05-17 · ok HTTP/1.1 200 825 ms crawled 2026-05-11

US · 178.156.139.227 · AS213230 Hetzner Online GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: IPSTUDIO - Boutique Fitness Web & Software Development
Description: For half a decade we've been focused on fitness studio success through web design, development and integrated solutions.
Language: en
Canonical: https://ipstudio.co

Open Graph

url: https://ipstudio.co
title: IPSTUDIO
locale: en_US
site name: IPSTUDIO
description: For half a decade we've been focused on fitness studio success through web design, development and integrated solutions.

Technology

CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

DNS records live

NS

ns1.digitalocean.com
ns2.digitalocean.com
ns3.digitalocean.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=zhTBGwmcS5dcJyFopibsaZdqrXHz0LCrTDt4-Fp-8O0
Sendinblue-code:20e9a333c3efb4b224b03ce3c2e24256

Email authentication partial

SPF

v=spf1 include:_spf.google.com include:spf.brevo.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@brevo.com

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1edEOrqRXnksXtlE/GAuhGZ3KN02FNPIBdTsEfyVVdYsgLsCWj55i3nBzavZnytVkySfjv9xBw9enR…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R13

from 2026-05-07 to 2026-08-05

Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://ipstudio.co/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), geolocation=(), microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; base-uri 'self'; font-src 'self' data: https:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: blob: https:; media-src 'self' blob: https:; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; connect-src 'self' https:; frame-src 'self' https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://www.google.com https://calendar.google.com
strict-transport-security: max-age=63072000; includeSubDomains; preload