mileiq.com

HTML metadata

Title: MileIQ | Automatic Mileage Tracker for Smarter Business
Description: Automate mileage tracking with MileIQ. Save time, track every drive accurately, and maximize tax deductions. Sign up for free today!
Language: en
Canonical: https://mileiq.com

Open Graph

title: MileIQ | Automatic Mileage Tracker for Smarter Business
description: Automate mileage tracking with MileIQ. Save time, track every drive accurately, and maximize tax deductions. Sign up for free today!

Technology

Server: istio-envoy
CMS: Next.js

Cookie consent

OneTrust

Third-party hosts loaded (1)

cdn.cookielaw.org×1

Social

Registration

Registrar

Cloudflare, Inc.

Created

2012-07-28

Expires

2026-07-28 68 days left

Updated

2025-06-28

Name servers

byron.ns.cloudflare.com
serenity.ns.cloudflare.com

DNS records live

NS

byron.ns.cloudflare.com
serenity.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

xrk37st6sm18878fkm3bcrrh6kh7tbc4
mixpanel-domain-verify=55e929c5-8f13-432b-a5d7-e409e7bb863d
atlassian-sending-domain-verification=e7536624-1f11-4e9c-8462-2d3a736a551b
rippling-domain-verification=217697edd61756fc

Verified for

Apple
Atlassian
Cursor
Google
HackerOne
Microsoft 365
Notion
Perplexity
Stripe
Twilio

Email authentication strong

SPF

v=spf1 include:_spf.google.com a mx include:sendgrid.net include:mail.zendesk.com include:_spf.psm.knowbe4.com include:39989144.spf06.hubspotemail.net  ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; pct=100; rua=mailto:reports@dmarc.bendingspoons.com; sp=reject; adkim=r;

policy: reject (enforced) · sp=reject

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWts/airAbwCRAKkDBOFLLs7tTpbmI/KrXFPn5vXC9WlBg704dxjS012bRCNN7aNJ1LVvh4qgd2EBw…

selectors probed

Certificate (current)

WR3

from 2026-04-25 to 2026-07-24

Expires in 65 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://mileiq.com/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: geolocation=(), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://js.sentry-cdn.com https://browser.sentry-cdn.com https://assets.mileiq.com https://miqwebflowscripts.blob.core.windows.net https://cdnjs.cloudflare.com https://www.googletagmanager.com https://cdn.jsdelivr.net https://app-assets-tutorial.mileiq.com https://*.google-analytics.com https://*.googletagmanager.com https://*.googlesyndication.com https://*.appsflyer.com https://websdk.appsflyer.com https://cdn.avo.app https://cdn.mxpnl.com https://cdn.rudderlabs.com https://polyfill-fastly.io https://static.zdassets.com https://ekr.zdassets.com https://v2.zopim.com https://js.appboycdn.com https://cdn.cookielaw.org; worker-src 'self' blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://static.zdassets.com https://js.appboycdn.com https://cdn.cookielaw.org; font-src 'self' data: https://fonts.gstatic.com https://static.zdassets.com https://js.appboycdn.com; img-src 'self' data: blob: https://mi

Links to (10)

Linked from (1)

tcs-cpa.com×1