molecule.xyz

.xyz crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1169 ms crawled 2026-05-19

US · 76.76.21.21 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Molecule — Reduce Friction, Accelerate Science
Description: Molecule reduces friction and accelerates science. Fund biotech research, discover DeSci projects, and access tokenized intellectual property on the leading decentralized science platform.
Language: en
Canonical: https://molecule.xyz

Open Graph

title: Molecule — Reduce Friction, Accelerate Science
description: Molecule reduces friction and accelerates science. Fund biotech research, discover DeSci projects, and access tokenized intellectual property on the leading decentralized science platform.

Technology

CDN: Vercel
CMS: Next.js

Social

Registration

Registrar

Namecheap

Created

2014-06-10

Expires

2027-06-10 386 days left

Updated

2026-05-11

Name servers

brenda.ns.cloudflare.com
drew.ns.cloudflare.com

DNS records live

NS

brenda.ns.cloudflare.com
drew.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

proxy-ssl.webflow.com
0028105f-b945-46b8-b029-fb4001a3364a=d4cf5d9bf95adc2b6120c1cb16bea38085718b5ed693b786a4d67d072ab80a37
google-site-verification=Cj9Feb4r1G8_2Fkw4T2UdM8GRVxIm0RTI9dxFXOsc3A
google-site-verification=nI3qv43sPsShX2IcvgXQHxmO9cDUAp85QlqRIDJe2eU

Email authentication partial

SPF

v=spf1 a mx include:_spf.mlsend.com ?all

neutral (?all)

DMARC

v=DMARC1; p=none; rua=mailto:tech@molecule.to

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWlbJiBbc0ATnQ8HT0wcFigt4KDe+bWWYMOIK6q7aW0TSuTGgVXTUHGcMde9G+uJjcKg0j2IQ/q245…

selectors probed

Certificate (current)

R12

from 2026-04-30 to 2026-07-29

Expires in 70 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://molecule.xyz/

present

strict-transport-security
content-security-policy

findings

CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: base-uri 'self'; child-src blob: https://auth.privy.io https://verify.walletconnect.com https://verify.walletconnect.org https://challenges.cloudflare.com; connect-src 'self' blob: data: https://*.molecule.xyz https://molecule.xyz https://auth.privy.io wss://relay.walletconnect.com wss://relay.walletconnect.org wss://www.walletlink.org wss://ws-us3.pusher.com https://sockjs-us3.pusher.com/pusher/app https://*.rpc.privy.systems https://*.g.alchemy.com https://privy.molecule.xyz/ https://explorer-api.walletconnect.com/w3m/v1/ https://rpc.ankr.com/ https://coins.llama.fi/ https://*.sentry.io https://*.molecule.xyz/ https://*.amplitude.com https://*.litprotocol.com https://api.mainnet-beta.solana.com/ https://*.walletconnect.com/ https://*.walletconnect.org/ https://api.web3modal.org/ https://s3.us-west-2.amazonaws.com/upload.dev.stg.kamu.dev.us-west-2/ https://s3.us-west-2.amazonaws.com/upload.prod.stg.kamu.dev.us-west-2/ https://s3.us-west-2.amazonaws.com/repo.prod.stg.kamu.dev.us-west-2
strict-transport-security: max-age=63072000