indexo.dev

murallink.com

.com crawl

First seen 2026-05-02 · Last seen 2026-05-02 · ok HTTP/1.1 200 1017 ms crawled 2026-05-08

US · 34.232.97.227 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Mural Health
Description
Mural Health App
Language
en

Technology

Server
nginx

Third-party hosts loaded (2)

  • cdn.pendo.io×2
  • maps.googleapis.com×2

Registration

Registrar
Amazon Registrar, Inc.
Created
2022-07-27
Expires
2028-07-27 799 days left
Updated
2024-06-23
Name servers
  • ns-1531.awsdns-63.org
  • ns-161.awsdns-20.com
  • ns-1895.awsdns-44.co.uk
  • ns-756.awsdns-30.net

DNS records live

NS
  • ns-1531.awsdns-63.org
  • ns-161.awsdns-20.com
  • ns-1895.awsdns-44.co.uk
  • ns-756.awsdns-30.net
TXT
  • "v=spf1 ip4:167.89.91.17 include:_spf.google.com include:amazonses.com ~all
  • google-site-verification=aa1FcJGDs0xjzLrRgKb68iJ_LhLxYmWayiunvd7TRIU"

Email authentication no MX

SPF
not published
DMARC
v=DMARC1; p=none; rua=mailto:dmarc-reports@muralhealth.com;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ziF4H49ZqrJ3khCJaAhFZUB67kuYHUUYieGZoYEpG+T16y3ncno0XQ89144p0Tt5ds09akqkEln6b4pav…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tqGNpFnzSsv3M/dvkmFsFzTujMXHZOvpHYvwMParc/cPAFQ4N61uwso0PFpLT6Alj4WSlRedJE1CmFO5K…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2025-08-09 to 2026-09-08
Expires in 111 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://murallink.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://maps.googleapis.com https://maps.gstatic.com https://cdn.pendo.io https://*.storage.googleapis.com https://app.pendo.io; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.storage.googleapis.com https://cdn.pendo.io https://app.pendo.io; img-src 'self' data: https: blob:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https: wss:; frame-src 'self' https://maps.googleapis.com https://www.google.com; frame-ancestors 'self'; worker-src 'self' blob:;
strict-transport-security
max-age=31536000
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
credentialless
cross-origin-resource-policy
cross-origin

Linked from (1)