keploy.io
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- Vercel
- CMS
- Next.js
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (3)
- keploy-devrel.s3.us-west-2.amazonaws.com×2
- px.ads.linkedin.com×1
- www.googletagmanager.com×1
Social
DNS records live
- NS
-
- ns-1152.awsdns-16.org
- ns-1660.awsdns-15.co.uk
- ns-310.awsdns-38.com
- ns-753.awsdns-30.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
OSSRH-82699
- Verified for
-
- Anthropic
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; pct=100; rua=mailto:neha@keploy.io,mailto:shubham@keploy.io; ruf=mailto:neha@keploy.iopolicy: none (monitoring only) - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCxhwjF+VoeMAyEnTSBsB4oJfa8aBFjBSMzWmRATi4ga3j/zcstlkpySKlqPwUT1UmIOfdkP+S5RgwattCrxr…
selectors probed - google:
Certificate (current)
Amazon RSA 2048 M01
Expires in 165 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
camera=(), microphone=(), geolocation=(), interest-cohort=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://keploy-websites.vercel.app https://blog-website-phi-eight.vercel.app https://docbot.keploy.io https://www.youtube.com https://youtube.com https://www.youtube-nocookie.com https://*.youtube.com https://*.googlevideo.com https://*.g.doubleclick.net https://*.ytimg.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.youtube.com https://www.google-analytics.com https://snap.licdn.com https://pagead2.googlesyndication.com https://*.clarity.ms https://keploy-websites.vercel.app https://blog-website-phi-eight.vercel.app https://docbot.keploy.io https://s.ytimg.com https://youtube.com https://www.youtube-nocookie.com https://*.youtube.com https://*.ytimg.com https://www.gstatic.com https://googleads.g.doubleclick.net https://news.google.com https://assets.apollo.io https://s3-us-west-2.amazonaws.com https://*.amazonaws.com https://cdn.vector.co https://*.convertexperiments.com https://chatwoot.keploy.io https://*.chatwoot- strict-transport-security
max-age=63072000; includeSubDomains; preload- content-security-policy-report-only
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://*.clarity.ms https://assets.apollo.io https://telemetry.keploy.io https://keploy-devrel.s3.us-west-2.amazonaws.com https://px.ads.linkedin.com https://pagead2.googlesyndication.com; connect-src 'self' https://*.google-analytics.com https://*.clarity.ms https://assets.apollo.io https://telemetry.keploy.io https://keploy-devrel.s3.us-west-2.amazonaws.com https://px.ads.linkedin.com https://api.github.com; img-src 'self' data: https: blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com https://keploy-devrel.s3.us-west-2.amazonaws.com; frame-src 'self' https://www.youtube.com https://www.youtube-nocookie.com https://youtube.com https://calendar.app.google https://www.googletagmanager.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self';
Links to (6)
- github.com×2
- linkedin.com×2
- twitter.com×2
- visualstudio.com×2
- youtube.com×2
- luma.com×1