indexo.dev

kakuro.com

.com crawl

First seen 2026-04-18 · Last seen 2026-05-09 · ok HTTP/1.1 200 2344 ms crawled 2026-05-12

US · 172.67.150.244 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Kakuro.com - The Ultimate Kakuro Puzzle Game
Description
Play Kakuro puzzles online for free. Multiple difficulty levels from beginner to master. Train your brain with this addictive number puzzle game.
Language
en
Canonical
https://kakuro.com
Translations
  • cs
  • da
  • de
  • en
  • es
  • fi
  • fr
  • he
  • hr
  • hu
  • id
  • it
  • ja
  • ko
  • ms
  • nl
  • no
  • pl
  • pt-br
  • ro
  • ru
  • sl
  • sv
  • tr
  • vi
  • zh-cn
  • zh-tw

Open Graph

title
Kakuro.com - The Ultimate Kakuro Puzzle Game
locale
en_US
site name
Kakuro.com
description
Play Kakuro puzzles online for free. Multiple difficulty levels from beginner to master.

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Cloudflare Insights
Ads
  • Google AdSense

Third-party hosts loaded (2)

  • pagead2.googlesyndication.com×1
  • static.cloudflareinsights.com×1

Registration

Registrar
Dynadot Inc
Created
2005-09-06
Expires
2026-09-06 109 days left
Updated
2026-04-17
Name servers
  • alexia.ns.cloudflare.com
  • louis.ns.cloudflare.com

DNS records live

NS
  • alexia.ns.cloudflare.com
  • louis.ns.cloudflare.com
TXT
  • google-site-verification=qqqnkFiukMt9ZsMWD2tRixfY5Q6Tf94agRAore0KXOE

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-04-17 to 2026-07-16
Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://kakuro.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY, DENY
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googlesyndication.com https://*.googletagmanager.com https://*.google-analytics.com https://*.googleadservices.com https://*.google.com https://*.gstatic.com https://*.doubleclick.net https://*.adtrafficquality.google; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https: blob:; connect-src 'self' https://*.googlesyndication.com https://*.google-analytics.com https://*.googleadservices.com https://*.google.com https://*.doubleclick.net https://*.adtrafficquality.google; frame-src 'self' https://*.googlesyndication.com https://*.doubleclick.net https://*.google.com https://*.googleadservices.com; frame-ancestors 'none'; base-uri 'self'; form-action 'self'
strict-transport-security
max-age=31536000; includeSubDomains, max-age=31536000; includeSubDomains

Links to (4)

Linked from (1)