indexo.dev

korli.fr

.fr crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 511 ms crawled 2026-05-18

FR · 51.178.54.115 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Korli — Turn bio traffic into revenue
Description
Korli helps creators turn clicks into subscribers, leads and sales with Smart Rules, analytics and email capture. Free to launch, Pro to grow.
Language
en
Canonical
https://korli.fr
Translations
  • fr

Open Graph

url
https://korli.fr
title
Korli — Turn bio traffic into revenue
locale
en_US
site name
korli
description
Korli helps creators turn clicks into subscribers, leads and sales with Smart Rules, analytics and email capture. Free to launch, Pro to grow.

Technology

CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Registration

Registrar
OVH
Created
2025-12-07
Expires
2026-12-07 202 days left
Updated
2025-12-12
Name servers
  • dns16.ovh.net
  • ns16.ovh.net

DNS records live

NS
  • dns16.ovh.net
  • ns16.ovh.net
MX
  • 1 mx1.mail.ovh.net
  • 100 mx3.mail.ovh.net
  • 5 mx2.mail.ovh.net
TXT
Show 4 TXT records
  • brevo-code:7f613baa5b0116b9bf610294449ff294
  • google-site-verification=jxWCGUl8725OhrhCd-G9BuYW5oTwIDwV3KdT8Nwx9Zs
  • 1|www.korli.fr
  • google-site-verification=AKr_aWBe44idD6fBjufi62a85Q6GrwqY-wrMG-VvZmc

Email authentication partial

SPF
v=spf1 include:mx.ovh.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:postmaster@korli.fr; adkim=s; aspf=s; fo=1
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-06 to 2026-07-05
Expires in 47 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://korli.fr/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://js.stripe.com https://stats.korli.fr https://assets.calendly.com https://www.googletagmanager.com; script-src-elem 'self' 'unsafe-inline' https://js.stripe.com https://stats.korli.fr https://assets.calendly.com https://www.googletagmanager.com; script-src-attr 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' https: data:; connect-src 'self' https://api.stripe.com https://*.upstash.io https://stats.korli.fr https://calendly.com https://*.calendly.com https://www.google-analytics.com https://region1.google-analytics.com https://www.googletagmanager.com; frame-ancestors 'self'; base-uri 'self'; form-action 'self'; frame-src https://js.stripe.com https://hooks.stripe.com https://open.spotify.com https://embed.spotify.com https://calendly.com https://*.calendly.com
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (2)

Linked from (1)