merctickets.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 2449 ms crawled 2026-05-18

US · 209.104.5.180 · AS22772 Login, Inc.

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title: Mercury Tickets
Language: en

Open Graph

title: Mercury Tickets
site name: Mercury Tickets

Technology

Server: Apache

Analytics

Google Tag Manager

Ads

Meta Pixel

Fonts

Google Fonts

Third-party hosts loaded (8)

assets.boldtypetickets.com×21
connect.facebook.net×1
fonts.googleapis.com×1
js.sentry-cdn.com×1
js.stripe.com×1
kit.fontawesome.com×1
www.google.com×1
www.googletagmanager.com×1

Registration

Registrar

Gandi SAS

Created

2013-06-12

Expires

2027-06-12 389 days left

Updated

2026-05-11

Name servers

ns-142-b.gandi.net
ns-185-a.gandi.net
ns-71-c.gandi.net

DNS records live

NS

ns-142-b.gandi.net
ns-185-a.gandi.net
ns-71-c.gandi.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=jZiclmY3wmW_CKA6FJYbgSYMX37YUKZNdLmGjuPGX00

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-05-17 to 2026-08-15

Expires in 88 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://merctickets.com/

present

strict-transport-security
content-security-policy-report-only

findings

short HSTS max-age
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

strict-transport-security: max-age=3600; includeSubdomains
content-security-policy-report-only: default-src https: data: wss: 'unsafe-inline' 'unsafe-eval'; form-action https:; report-uri https://ggj3qf05xeualpl0weo7xdrg.httpschecker.net/report

Links to (1)

boldtypetickets.com×5