khalti.com

HTML metadata

Technology

Server

nginx

CMS

WordPress

Fonts

• Google Fonts

Third-party hosts loaded (3)

• finaxio.saleroti.com×2
• fonts.googleapis.com×2
• gmpg.org×1

Social

• github
• facebook
• instagram
• linkedin
• twitter
• youtube

Contact

Email

• support@khalti.com
• pasalsupport@khalti.com
• support@khalti.comauthorized
• support@khalti.comnrb

Phone

• 01-5970017
• 18102102102
• 16600158888
• +9779801822841

Registration

Registrar

PDR Ltd. d/b/a PublicDomainRegistry.com

Created

2016-05-12

Expires

2027-05-12 358 days left

Updated

2025-03-20

Name servers

• ns-1286.awsdns-32.org
• ns-1889.awsdns-44.co.uk
• ns-440.awsdns-55.com
• ns-716.awsdns-25.net

DNS records live

NS

• ns-1286.awsdns-32.org
• ns-1889.awsdns-44.co.uk
• ns-440.awsdns-55.com
• ns-716.awsdns-25.net

MX

• 0 khalti-com.mail.protection.outlook.com

TXT

Show 9 TXT records

• google-site-verification=q9ISNJLGVNNHpNLGjAikyhl_8Gj6nKz6nKKCpOdFSgs
• MS=ms55528254
• atlassian-domain-verification=O03yDnbWqRLCZJEZ9twp7BUEOr1AwUuB8RQRHbOx3wzw5lw2KOILi2QuKwuc4v4U
• google-site-verification=2O7dEkfK7E10HVqGCnoBrbvsvfx2aSxqLwpGrJylvLQ
• google-site-verification=9HwpJgeW-PWNeR9VD6bnB0OK5i35FVfqh7JIT-F-XmA
• google-site-verification=FDPQjedFQrcb4tjMyrB70WgwOoUI6rerU-5gM0m3z54
• google-site-verification=PNA4sVv3PpN3JGyPy02qwbQ7zwzVebZx3wIR7-wCRwc
• google-site-verification=hOKXGAlF-_bddcJ911IWcojiBCbeq1cQnd5NxmL4rDk
• google-site-verification=oL9P5GhdtL6NoZB_OXUS7phZ6RSlvfjFPIcRyEgJDCg

Email authentication strong

SPF

v=spf1 a mx include:amazonses.com include:_spf.google.com include:spf.protection.outlook.com ip4:139.5.70.196 ip4:110.44.119.100 -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ewlF0zA2GIrS57xafWRxjuZRLgC6XJ+9Qt4QY2uQCt0A3j6g/RnZEro4FYWx2T3QTxLY4FON2Im2a…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuj2ajHUR8QF32uCUc3PvTx9/8f3B3Mx9zFI4Jn+xbxdlGO4b5XvmoqwFLS8GEDSI/U3HPsrjqby5wZ…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXnG3WdDAA9O0GXbm0zFtBOwLsS8DzmUXojoPm4erH43IABrAD8rYhl1tL6pfVKP3I38M1STRQaeQaC4/Z…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWyZjzOEaDtw8H/QGoofJf833phdqCoUPexM5m34qBzLXHc1bHsFccX7P5iEHVYj4PuCY/nJ8I/CELRMlR…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://khaltibyime.khalti.com/

present

• x-frame-options

findings

• missing HSTS
• missing Content Security Policy
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (13)

• daamiqr.com×2
• google.com×2
• apple.com×2
• sisainfosec.com×2
• amtivo.com×2
• github.com×2
• wa.me×2
• facebook.com×2
• instagram.com×2
• linkedin.com×2
• x.com×2
• youtube.com×2
• m.me×2

Linked from (5)

• daamiqr.com×2
• pandaremit.com×2
• connectips.com×1
• iginepal.com×1
• manakamanacablecar.com×1