indexo.dev

multifactor.com

.com crawl

First seen 2026-04-25 · Last seen 2026-05-19 · ok HTTP/1.1 200 247 ms crawled 2026-05-19

US · 104.21.1.211 · AS13335 Cloudflare, Inc.

Reputation 100/100

sector tech type homepage

HTML metadata

Title
Multifactor | Secure Online Account Sharing for Humans & AI
Description
Multifactor is the best way to securely share online accounts with humans and AI agents. Experience trustless authentication, authorization, and auditing built for the modern web.
Language
en

Open Graph

url
https://multifactor.com
title
Multifactor
locale
en_US
description
Multifactor is the best way to securely share online accounts with humans and AI agents. Experience trustless authentication, authorization, and auditing built for the modern web.

Technology

CDN
Cloudflare
CMS
Next.js
Social widgets
  • YouTube Embed

Third-party hosts loaded (2)

  • api.producthunt.com×2
  • www.youtube.com×1

Social

Registration

Registrar
Cloudflare, Inc.
Created
2017-05-29
Expires
2028-05-29 740 days left
Updated
2024-02-20
Name servers
  • amit.ns.cloudflare.com
  • heather.ns.cloudflare.com

DNS records live

NS
  • amit.ns.cloudflare.com
  • heather.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • pinterest-site-verification=c51680381f4701b6f060632d9829350e
  • MS=ms13513138
  • google-site-verification=2gGgXIlhSrhsgxMAcf-uVZ9R9JYHKCcppEHqQmKwK-A

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:_spf.google.com -all
strict (-all)
DMARC
v=DMARC1;p=reject
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-11 to 2026-07-10
Expires in 52 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://multifactor.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
accelerometer=*, ambient-light-sensor=*, autoplay=*, camera=*, display-capture=*, encrypted-media=*, fullscreen=*, geolocation=*, gyroscope=*, magnetometer=*, microphone=*, midi=*, payment=*, picture-in-picture=*, publickey-credentials-get=*, screen-wake-lock=*, sync-xhr=*, usb=*, web-share=*, xr-spatial-tracking=*
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' *.multifactor.com chrome-extension://* moz-extension://* safari-web-extension://*
strict-transport-security
max-age=15552000; includeSubDomains; preload

Links to (10)

Linked from (3)