miraclebrand.co
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Shopify
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Termly
Third-party hosts loaded (15)
- cdn.shopify.com×13
- shop.app×2
- www.googletagmanager.com×2
- api.config-security.com×1
- app.termly.io×1
- conf.config-security.com×1
- fonts.shopifycdn.com×1
- j.northbeam.io×1
- monorail-edge.shopifysvc.com×1
- res4.applovin.com×1
- static.klaviyo.com×1
- static.shopmy.us×1
- trustspot.io×1
- whale.camera×1
- widgets.juniphq.com×1
Social
DNS records live
- NS
-
- ns-1290.awsdns-33.org
- ns-150.awsdns-18.com
- ns-1993.awsdns-57.co.uk
- ns-598.awsdns-10.net
- MX
-
- 1 smtp.google.com
- TXT
-
Show 8 TXT records
google-site-verification=4tBQPxS4U6qf0Q4ZH3xFEWM5LTKfuRdRlBjysbyFFSkgoogle-site-verification=64vuEoohwyE04a9NKi9jxdh3gesr_wP_mfG5MRauDE4google-site-verification=6WEtRZJYy9q5y9tFUobFKmXk_mlxeNLbrDjVxyPyP98google-site-verification=DYdUe2sJwBs7tdVTO5AOEkI32tHpStAq9sQQ0AsaVI0google-site-verification=yVeR-Vr-9nXajRmYqaEqHlu5AYzeJGs9aPKJ_H18fjgklaviyo-site-verification=JFNK6AawrBokBApDsdGCQn761cbJSNb4sodzPR2gcIusRPZDo=facebook-domain-verification=tuld50yocnhb1q4008iul5hvw02s4c
Email authentication partial
- SPF
-
v=spf1 include:shops.shopify.com include:_spf.google.com include:mailgun.org ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
Show 4 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyw1ZEfALZUPNapBJvU5t40xFZIYqgQ+1l0zju4x5hAYC+g9LgK2TwL0vVngETE+qWVwhdXe5tdww4y… - k1:
k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA45+1MTeXCOqRr5i/9YycYEz8OieJY/YqFEhbsCNOgnrRAWLgVf/AI5s4cqDlht7jUWJKgz6pBy3tjLfHNMLmkph… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2H7I4QyPJLDb4VCzzcV8mYxAKOCm9MrQz4graCnyXvGrVw0w6MrxefVB3MtNoU/T9VCyaNcdsNQCbmSCRz… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWLiEiPtEitla+4jor54Ye+kOrIrgnzgTqbBYrvXQJKDk94qaXN7d4WFMTPLVhKIlRP29DLzI+4TXmeQJO…
selectors probed - google:
Certificate (current)
E7
Expires in 41 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- short HSTS max-age
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;- strict-transport-security
max-age=7889238