mixpanel.com
HTML metadata
Technology
- Server
- nginx
- Cookie consent
-
- TrustArc
- Fonts
-
- Google Fonts
Third-party hosts loaded (8)
- framerusercontent.com×84
- cdn.optimizely.com×3
- consent.trustarc.com×3
- events.framer.com×1
- fonts.gstatic.com×1
- js.qualified.com×1
- js.sentry-cdn.com×1
- logx.optimizely.com×1
Registration
- Registrar
- Squarespace Domains II LLC
- Created
- 2007-03-13
- Expires
- 2027-03-13 298 days left
- Updated
- 2026-02-26
- Name servers
-
- ns-cloud-a1.googledomains.com
- ns-cloud-a2.googledomains.com
- ns-cloud-a3.googledomains.com
- ns-cloud-a4.googledomains.com
DNS records live
- NS
-
- ns-cloud-a1.googledomains.com
- ns-cloud-a2.googledomains.com
- ns-cloud-a3.googledomains.com
- ns-cloud-a4.googledomains.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 32 TXT records
google-site-verification=qQHdlEQxYvVwrjb9Zgmj1RsknS4y-WCLtig13_IxfTAopenai-domain-verification=dv-TftXocQVoTzxNQdKw079tt0Ogoogle-site-verification=zye3BJXqUVHQeAsGrO-DRx3hdWbejsQQ5VVzIC31dPk_pysjf1hs3tpcaonmkkamhuoaky840bfjtpnfqlr8xr4274s0bv7y2f5l823hvmngoogle-site-verification=6EPHA6PMWQDabnDK_V2tVkXyFalflpz9sumHwc1mS00_a7zqy860bl09aawgy8shupxomn3h09mgoogle-site-verification=VMHFM5xr-RkJN4MKG7Ou_uziPdXWw3E85YTbZ__GF9U_nxie7i2jwbv7344e7e8v3lpwiy5k0c9pylon-domain-verification-2j2gtb=aKlpiNn72zAcexIIrfRM29MjUh1-domain-verification=3XJNoXH6qv3Kc1RMbNLS9wRwaCuDSM64QYHCnNvFJK9hQbzHdmp4kmrgwhnvk4kpfd2yv5bz3n6nsvm4google-site-verification=3g9jvtmLUw-Uqt1UAgrtkEUqE5WNXb-yTk5Y_pzQMK0adobe-idp-site-verification=18d7a372305152dd910d51fb15dac81724300d73de5b56ac49708af984d1eb0c_h8lxmnx7to20a2g027jxchp3jce3vjc_b9d0k69do2n0j4v4l7mxju6zu2hit3zasv=e2d580b136fac6f19b387e3663ccf90blinear-domain-verification=581976ps-cd-verification=d6edbfa8-d5ac-459f-a134-de1bf3f8ef67citrix-verification-code=4eaa535c-b772-4589-b9f2-1e8eabd4dfb5MS=ms26130214google-site-verification=242X-pZlv3hK_Kbuu_FlPQryh-lXYXpRE6crtA6D_7wsinch-domain-verification=68558eb9-824a-4a4f-8973-44946a944f4ar8wjzm5jp8q1sf22dg7nm27q4550rhn23ctjl9r3t2vw5bf0n5mg927blj54qlsblinear-domain-verification=intkng5jf7x6anthropic-domain-verification-rdp6sb=yPvA7x2OevSlCexxdYFzlsJqBmixpanel-domain-verify=fbf87d0d-00dd-4dfd-bfa8-a2016c078033google-site-verification=Zw7xBYyMc1l8a-jD6N2Ils5HqzHq7uX3t9If1k-cu_Agoogle-site-verification=WJ0SMLrAGuZ-upJODiDKXBDHEagqnYUdCU2x9kxjMqshubspot-domain-verification=OWMxNDFiZTktOWJiMi00ZDY5LWI4MmItZmQzNTAwNmFhMzQ0google-site-verification=H8naZHuJpjEY5DbrW0Zc0R51MeWiuj4zLft9DrPdSxw
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com include:mail.zendesk.com ip4:74.86.78.64/27 ip4:50.23.70.192/27 ip4:169.54.194.64/27 include:244585224.spf07.hubspotemail.net -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; sp=none; fo=1; ri=3600; rua=mailto:dmarcreports@mixpanel.compolicy: reject (enforced) · sp=none - DKIM
-
Show 4 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCKMs7DjR9RjOS9Jhaj7jd9SbgpHR7s/Gx7XufE/HLxZszM48nwp9heMOSUG0RCYTDyTQGe0mG3gBHN0RTiBq… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2fS50LmjKn7H7AHUX8LB3pWQh+ZrdUKOyxv0hF6k11Fbqu7OLRVorrvruP21SDxVxllCSoBZUqMSYw/HC… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCtmsHLueJcE3C1ygCBTrzdcePkAwcQhhL/9EwTdWGO8VUVl11clgTQ2h5O8uQ3idnMGFoV+5fxjYRaTw5GYTI5S9… - smtpapi:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed - google:
Certificate (current)
GeoTrust TLS RSA CA G1
Expires in 240 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
autoplay=*, fullscreen=*, web-share=*- x-content-type-options
nosniff, nosniff- content-security-policy
default-src 'self' https://*.mixpanel.com https://cdn.mxpnl.com https://cdn-dev.mxpnl.com https://*.zdassets.com https://ekr.zendesk.com wss://mixpanelsupport.zendesk.com https://framerusercontent.com https://mixpanel.com https://*.mixpanel.com https://*.qualified.com https://thesignalprod.wpenginepowered.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.mxpnl.com https://cdn-dev.mxpnl.com https://cdn.rollbar.com https://js.stripe.com https://*.zdassets.com https://*.zopim.com https://assets.zendesk.com https://www.google.com https://www.gstatic.com https://widget.kapa.ai https://www.youtube.com/embed/ https://connect.facebook.net https://apis.google.com https://accounts.google.com https://cdp.customer.io https://assets.customer.io https://customerioforms.com https://code.gist.build https://*.sendbird.com 'unsafe-eval' https://*.6sc.co https://static.addtoany.com https://*.adroll.com https://cdn-assets-prod.s3.amazonaws.com https://optimizely.s3.amazonaws.com https://*.b- strict-transport-security
max-age=63072000; includeSubDomains; preload
Linked from (31)
- jonyablonski.com×4
- wildapricot.org×4
- qbunt.com×3
- newsettlementcommunitycenter.org×3
- codotvu.com×2
- petcube.com×2
- silkstart.co.uk×2
- b2bsaastools.com×2
- saassoftwaretools.com×2
- saasretentiontools.com×2
- silkstart.com×2
- amz520.com×2
- acct209.com×2
- polarsteps.com×2
- dataunlocker.com×2
- acct229.com×2
- sendtoinc.com×2
- throttlehq.com×2
- techtonica.org×2
- yms163.com×2
- transaxt.com×2
- readmake.com×2
- freestuff.dev×2
- amzdh.com×2
- qeturah.com×1
- drawpforschool.com×1
- bikeroar.com×1
- launch01.com×1
- morequalifiedleads.co.uk×1
- pindigo.app×1
- shuttlepod.org×1