market.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-14 · ok HTTP/1.1 200 2635 ms crawled 2026-05-14

US · 104.26.7.102 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title

Market.com: Expert Product Comparisons for Smarter Shopping

Description

Market.com helps you cut through marketing noise with expert guides and unbiased comparisons. Make faster, smarter buying decisions powered by real insights, not hype.

Language

en-US

Canonical

https://www.market.com/

Translations

en ×3
es ×2
fr ×2
de
it

Open Graph

url: https://www.market.com/
title: Market.com: Expert Product Comparisons for Smarter Shopping
locale: en_US
site name: Market.com
description: Market.com helps you cut through marketing noise with expert guides and unbiased comparisons. Make faster, smarter buying decisions powered by real insights, not hype.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Cloudflare Insights
Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (4)

m.media-amazon.com×260
cdn.cookielaw.org×1
static.cloudflareinsights.com×1
www.googletagmanager.com×1

Registration

Registrar

SafeNames Ltd.

Created

1993-09-03

Expires

2034-09-02 3026 days left

Updated

2024-09-03

Name servers

dane.ns.cloudflare.com
ulla.ns.cloudflare.com

DNS records live

NS

dane.ns.cloudflare.com
ulla.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

OSSRH-53038
git.market.com -> https://github.com/exposebox
git.market.com -> https://github.com/mobfox

Verified for

Google
Microsoft 365

Email authentication partial

SPF

v=spf1 ip4:34.240.169.246 ip4:5.179.201.4 include:_spf.google.com include:spf.mandrillapp.com include:sendgrid.net include:eu.mailgun.org ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:bi@market.com

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCETm/4bKBvVoXerYXlX/s+NoYKXHHASoyUPsB0cthw+YIpPez2KiHAGESESIjfysTutNLZMY4f062do3Rocc…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAteO1jORQQ9g/ZFZGNAfuuhAhYOwgio/iNxcMJ+CEhnmyVmcHKKNwxDCbSX2+AZ8aCJSSixxouedjF1JK/2…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8PgSAqr4nAkpdbXnHDRyKCKiPEhmDG3RyESxWbI/YS7TafFm8jwLWGUkDUlGcfWZqXi6MoxsY95nbmx2mXr9ooC…

selectors probed

Certificate (current)

WE1

from 2026-05-01 to 2026-07-30

Expires in 70 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.market.com/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self' * data: blob: https: www.market.com *.www.market.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.www.market.com www.market.com cdn.cookielaw.org *.clarity.ms *.peacebanana.com *.ostrichesica.com *.googlesyndication.com *.cloudflareinsights.com *.cheqzone.com *.cloudfront.net *.datadoghq-browser-agent.com *.ampproject.org *.gstatic.com *.google.com *.alooma.com *.doubleclick.net *.googleadservices.com *.googletagmanager.com *.google-analytics.com *.googleapis.com *.hhtpp.com *.facebook.net *.dropbox.com *.bing.com *.yandex.ru *.quora.com *.yimg.com sp.analytics.yahoo.com *.ipify.org blob: data: https: www.market.com *.www.market.com; style-src 'self' data: blob: 'unsafe-inline' *; connect-src 'self' data: blob: https: www.market.com *.www.market.com *.ampproject.org *.google-analytics.com *.doubleclick.net *.google.com *.hhtpp.com *.yandex.ru *.gravatar.com *.wp.com; font-src 'self' data: blob: *.ampproject.org *.googletagmanager.com *.googleapis.com *.gstatic

Linked from (1)

n5sensors.com×2