kwiat.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Shopify
- Analytics
-
- Cloudflare Insights
Third-party hosts loaded (6)
- cdn.shopify.com×35
- cdn.sanity.io×33
- cdn.jsdelivr.net×1
- ro.am×1
- shop.app×1
- static.cloudflareinsights.com×1
Social
Contact
- Address
- st catalog.SubscribeLocations713 Madison AvenueNew York, New YorkOpening Spring 20263
Registration
- Registrar
- Network Solutions, LLC
- Created
- 1997-07-28
- Expires
- 2035-07-27 3355 days left
- Updated
- 2025-07-28
- Name servers
-
- hugh.ns.cloudflare.com
- jean.ns.cloudflare.com
DNS records live
- NS
-
- hugh.ns.cloudflare.com
- jean.ns.cloudflare.com
- MX
-
- 10 d122936a.ess.barracudanetworks.com
- 20 d122936b.ess.barracudanetworks.com
- TXT
-
google-site-verification=JaaW8TH-2pJo7MJAn-UAuRCvLDFap4DnL7bTwS106XQpicsio-domain-verification=2f6c7fd24fd31fceee6ddf4fe26fb53eea9f70039fff85f71550baaf54221c02facebook-domain-verification=n2hnyjvp1pnjwitn2ykftrrtm0mxhi
Email authentication strong
- SPF
-
v=spf1 a mx include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com include:spf.jiltmta.net include:spf.mtasv.net include:amazonses.com include:sendgrid.net ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@kwiat.com; ruf=mailto:dmarc@kwiat.com; adkim=r; aspf=r; rf=afrf; pct=100policy: quarantine - DKIM
-
Show 5 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCl9lKxa4CdsM34ZsD3XpKNcKj3He/m9B1k2Yy7RlIto4LBjtLPArN2Kt3/Vsd4qsOlwoe/6dL6DKS+HHvJLG… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4BnGHJwoRW9hglk6Y+dm8Kovz8ZJR1382dcVyCNQHI+EccNfi3nDwJ0ngT1oob5uHn8L6QCmsjlFN… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuThPQ3bWPaBQd/WgUDoVyTWmBttR3xRYyO/gTfDc5cCEQWUUr6UP3YYaoy1ET6NhVjFaT2dRVuqoh7Wbjk… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCcggQ8qt0n2XfZuFhvQsKQ73NuwJq6NeylvR6mnPiBqfshDr/lj3CU0a2jTOY6YfxVmyC1FdNxfY3d3E3hPFKu76… - smtpapi:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed - selector1:
Certificate (current)
E7
Expires in 42 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
base-uri 'self'; default-src 'self' 'nonce-06a2abeac2f7ad7514614b893b37fef8' https://cdn.shopify.com https://shopify.com; frame-ancestors 'self' https://www.sanity.io https://kwiat.com https://www.kwiat.com; style-src 'self' 'unsafe-inline' https://cdn.shopify.com http://localhost:* https://cdn.jsdelivr.net https://client.crisp.chat https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net https://static.klaviyo.com https://static-tracking.klaviyo.com https://static-forms.klaviyo.com https://assets.calendly.com 'self' 'unsafe-inline' https://cdn.shopify.com; connect-src * 'self' https://kwiat.com https://www.kwiat.com https://cdn5.kwiat.com https://cdn7.kwiat.com https://*.hsforms.com https://*.tryhydrogen.dev https://2rwz8aud.api.sanity.io wss://2rwz8aud.api.sanity.io https://*.cloudflarestream.com https://*.videodelivery.net https://ro.am https://api.affirm.com https://cdn1.affirm.com https://api.fastsimon.com https://ping.fastsimon.com https://challenges.cloudflare.- strict-transport-security
max-age=31536000