matterhaul.com

.com crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 2685 ms crawled 2026-05-15

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Matterhaul — AI Agents for Distributors and Manufacturers
Description: Matterhaul connects product data, quoting, and sales intelligence into one AI-powered operating system — helping distributors and manufacturers save time, reduce errors, and grow revenue.
Language: en
Canonical: https://matterhaul.com

Open Graph

url: https://matterhaul.com
title: Matterhaul — AI for companies that move and build the physical world
locale: en_US
site name: Matterhaul
description: Matterhaul connects product data, quoting, and sales intelligence into one AI-powered operating system — helping distributors and manufacturers save time, reduce errors, and grow revenue.

Technology

CDN: Vercel
CMS: Next.js

Social

Registration

Registrar

Amazon Registrar, Inc.

Created

2023-06-28

Expires

2027-06-28 403 days left

Updated

2026-02-26

Name servers

ns-1132.awsdns-13.org
ns-1818.awsdns-35.co.uk
ns-647.awsdns-16.net
ns-84.awsdns-10.com

DNS records live

NS

ns-1132.awsdns-13.org
ns-1818.awsdns-35.co.uk
ns-647.awsdns-16.net
ns-84.awsdns-10.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Anthropic
Apple
Stripe

Email authentication partial

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi9MlGhiTXqROzFLYJwfTxfQ9kQOZCS1Zl05GobydpDq0xFtfHnu84lCVwoll8h+vijbVsiHnRSgzbu…

selectors probed

Certificate (current)

R13

from 2026-03-22 to 2026-06-20

Expires in 30 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.matterhaul.com/

present

strict-transport-security
content-security-policy
x-frame-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; object-src 'none'; manifest-src 'self'; script-src 'self' 'report-sample' 'nonce-MzIzYWUyZjUtNTVmNS00YzgwLWE3MmQtNjNkMTJjNDkxNWMw' https://*.googletagmanager.com https://challenges.cloudflare.com https://clerk.matterhaul.com; style-src 'self' 'unsafe-inline'; img-src 'self' https://img.clerk.com https://*.google-analytics.com https://*.googletagmanager.com; font-src 'self'; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://clerk.matterhaul.com https://o4508209218650112.ingest.us.sentry.io; frame-src 'self' https://challenges.cloudflare.com; worker-src 'self' blob:; report-uri https://o4508209218650112.ingest.us.sentry.io/api/4510382312062976/security/?sentry_key=b0c2271e999ad325912ee13818d87d74&sentry_environment=production
strict-transport-security: max-age=63072000

Links to (1)

linkedin.com×1

Linked from (1)

appliedaifordistributors.com×1