indexo.dev

kitchenaid.pt

.pt crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 641 ms crawled 2026-06-04

IE · 54.220.112.235 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Website oficial da KitchenAid: aparelhos de cozinha de alta qualidade | KitchenAid PT
Description
Damos-lhe as boas-vindas ao website oficial da KitchenAid, onde pode encontrar aparelhos de cozinha de alta qualidade concebidos para dar asas à sua criatividade. Dê início a uma nova aventura culinária.
Language
pt-PT
Canonical
https://www.kitchenaid.pt/

Open Graph

title
Website oficial da KitchenAid: aparelhos de cozinha de alta qualidade | KitchenAid PT
description
Damos-lhe as boas-vindas ao website oficial da KitchenAid, onde pode encontrar aparelhos de cozinha de alta qualidade concebidos para dar asas à sua criatividade. Dê início a uma nova aventura culinária.

Technology

CDN
Amazon CloudFront
Server
ka
Cookie consent
  • OneTrust

Third-party hosts loaded (3)

  • images.ctfassets.net×58
  • cdn.cookielaw.org×1
  • storefront.assets.kasandwatch.net×1

Social

DNS records live

NS
  • ns.whirlpool.com
  • ns2.whirlpool.com
MX
  • 10 mailhost.whirlpool.com
  • 20 mailhost.whirlpool.com
  • 99 ns2.whirlpool.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 ip4:158.52.183.0/24 include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:gawp41cm@ag.dmarcian.com;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA OV R36
from 2026-05-12 to 2026-11-27
Expires in 174 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.kitchenaid.pt/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: wss://webmessaging.usw2.pure.cloud *.usw2.pure.cloud https://wepowerconnections.com https://lantern.roeyecdn.com https://lantern.roeye.com *.visualwebsiteoptimizer.com *.vwo.com dpm.demdex.net bat.bing.com *.tvpixel.com *.adsrvr.org *.go-mpulse.net *.akstat.io *.akamaihd.net chart.googleapis.com *.googletagmanager.com *.googleadservices.com *.google-analytics.com *.google.com *.googleapis.com https://google.com/pay *.gstatic.com *.wpsandwatch.com *.wpsandwatch.net *.kasandwatch.net *.collect.igodigital.com whirlpool-cdn.thron.com digitalassets-cdn.thron.com *.paypal.com apps.bazaarvoice.com *.bazaarvoice.com *.facebook.com *.facebook.net *.pinimg.com *.pinterest.com *.algolianet.com *.algolia.net https://insights.algolia.io *.ctfassets.net *.vtexassets.com https://vimeo.com *.vimeo.com *.vimeocdn.com *.youtube.com *.ytimg.com https://flagcdn.com *.sentry.io *.newrelic.com *.nr-data.net *.hotjar.com *.hotjar.io wss://*.hotjar.
strict-transport-security
max-age=63072000

Links to (6)

Linked from (1)