indexo.dev

lock.me

.me crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 923 ms crawled 2026-06-04

US · 104.26.1.144 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector entertainment type homepage

HTML metadata

Title
Escape room Polska | Lockme
Description
Lockme jest największym zbiorem escape roomów w Polsce. Na tej stronie możesz przeglądać wszystkie pokoje jak i dokonywać rezerwacji. Wybierz idealny pokój dla siebie i swoich znajomych.
Language
pl
Canonical
https://lock.me/pl/poland
Translations
  • bg
  • cs
  • de
  • en
  • pl
  • sk
  • sv
  • uk

Open Graph

url
https://lock.me/pl/poland
title
Escape room Polska | Lockme
site name
Lockme
description
Lockme jest największym zbiorem escape roomów w Polsce. Na tej stronie możesz przeglądać wszystkie pokoje jak i dokonywać rezerwacji. Wybierz idealny pokój dla siebie i swoich znajomych.

Technology

CDN
Cloudflare
Stack
PHP
Analytics
  • Cloudflare Insights

Third-party hosts loaded (2)

  • admin-pipeline.upsun-eu-5.observability-pipeline.blackfire.io×1
  • static.cloudflareinsights.com×1

Social

Contact

Phone

DNS records live

NS
  • hasslo.ns.cloudflare.com
  • ingrid.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google
  • Meta

Email authentication partial

SPF
v=spf1 mx a include:mail25.mydevil.net include:_spf.emaillabs.net.pl include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1;p=none;pct=0;rua=mailto:dmarc@vercom.pl
policy: none (monitoring only) · pct=0
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLZNJ7yjgx+YwXpYKZYXGb4dCmB8HYU1FZYCus6BOQvgG6jOcXx5E+FgklVZzg0QnnfI/V7G0OwB70…
selectors probed

Certificate (current)

E7
from 2026-04-23 to 2026-07-22
Expires in 47 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://lock.me/pl/poland

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer, strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
default-src 'self' data: 'unsafe-inline' lock.me static.lock.me static.erchamp.com; script-src 'self' blob: 'unsafe-inline' 'unsafe-eval' www.google-analytics.com *.googletagmanager.com kit.fontawesome.com ka-p.fontawesome.com ajax.cloudflare.com static.cloudflareinsights.com js.stripe.com connect.facebook.net platform.instagram.com www.instagram.com secure.payu.com api.mapbox.com analytics.tiktok.com analytics-ipv6.tiktokw.us ads.tiktok.com widget.lock.me img.lock.me; style-src 'self' 'unsafe-inline' widget.lock.me img.lock.me; font-src 'self' data: fonts.gstatic.com widget.lock.me img.lock.me; img-src 'self' data: 'unsafe-inline' *.tile.openstreetmap.org maps.googleapis.com *.google-analytics.com *.googletagmanager.com stats.g.doubleclick.net i.ytimg.com www.facebook.com ka-p.fontawesome.com analytics.tiktok.com analytics-ipv6.tiktokw.us ads.tiktok.com widget.lock.me img.lock.me www.gravatar.com static.lock.me lock.me; frame-src 'self' www.facebook.com www.youtube.com www.youtube-noc
strict-transport-security
max-age=15552000; includeSubDomains; preload

Links to (6)

Linked from (1)