indexo.dev

kilim.com

.com crawl

First seen 2026-06-03 · Last seen 2026-06-04 · ok HTTP/1.1 200 2034 ms crawled 2026-06-04

US · 100.30.129.62 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Authentic New, Vintage & Antique Handwoven Rugs | Kilim Studio
Description
Discover authentic new, vintage and antique handwoven Turkish rugs, Oriental rugs, kilims and runners from the source. Shop one-of-a-kind pieces at Kilim Studio.
Language
en
Canonical
https://www.kilim.com
Translations
  • en
  • es
  • tr

Open Graph

url
https://www.kilim.com
title
Authentic New, Vintage & Antique Handwoven Rugs | Kilim Studio
description
Discover authentic new, vintage and antique handwoven Turkish rugs, Oriental rugs, kilims and runners from the source. Shop one-of-a-kind pieces at Kilim Studio.

Technology

CMS
Gatsby
Stack
ASP.NET
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • www.googletagmanager.com×3
  • ct.pinterest.com×1
  • www.facebook.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1998-05-06
Expires
2028-05-05 700 days left
Updated
2023-04-14
Name servers
  • ns-1339.awsdns-39.org
  • ns-1777.awsdns-30.co.uk
  • ns-178.awsdns-22.com
  • ns-815.awsdns-37.net

DNS records live

NS
  • ns-1339.awsdns-39.org
  • ns-1777.awsdns-30.co.uk
  • ns-178.awsdns-22.com
  • ns-815.awsdns-37.net
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:amazonses.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; ruf=mailto:kilimdmarc@gmail.com; pct=100; adkim=s; aspf=s
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCLOHsGi3GiQ9H1KqfEp0Thxxm+ckbEtofbhXABr3zE3PXMbuSLOqIw7njyA/0itn/4h0Mv2cPH5KDNR5FqUW…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2026-05-25 to 2026-12-09
Expires in 187 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.kilim.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
geolocation=(), camera=(), microphone=(), payment=*
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://*.kilim.com https://*.google.com https://*.google.com.tr https://*.affirm.com https://d2hrj37bw2qhu2.cloudfront.net https://d2c5omkro4hr3n.cloudfront.net https://d3ddgyt86g7r25.cloudfront.net https://d2ce1d8r9z0m95.cloudfront.net https://d1lyctaehb9ahm.cloudfront.net;; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.kilim.com https://*.affirm.com https://www.google-analytics.com https://ssl.google-analytics.com https://www.googletagmanager.com https://*.google.com https://*.google.com.tr https://*.googleadservices.com https://*.doubleclick.net https://*.gstatic.com https://maps.googleapis.com https://pagead2.googlesyndication.com https://*.paypal.com https://*.stripe.com https://static-na.payments-amazon.com https://cdn.cookiehub.eu https://*.iyzipay.com https://*.iyzico.com https://*.mouseflow.com https://static.hotjar.com https://script.hotjar.com https://unpkg.com https://connect.facebook.net https://s.pinimg.com https://ct.pinterest.com ht
strict-transport-security
max-age=63072000; preload

Links to (7)

Linked from (1)