indexo.dev

mykillik.com

.com crawl

First seen 2026-06-03 · Last seen 2026-06-03 · ok HTTP/1.1 200 215 ms crawled 2026-06-03

US · 151.101.65.195 · AS54113 Fastly, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
myKillik
Description
Login to the all new myKillik

Technology

Third-party hosts loaded (2)

  • consent.cookiefirst.com×1
  • static.zdassets.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2012-02-07
Expires
2027-02-07 246 days left
Updated
2026-02-08
Name servers
  • ines.ns.cloudflare.com
  • lee.ns.cloudflare.com

DNS records live

NS
  • ines.ns.cloudflare.com
  • lee.ns.cloudflare.com
TXT
  • e0f0e9eede40408494f56700952e1033
Verified for
  • GlobalSign
  • Google

Email authentication no MX

SPF
v=spf1 -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; fo=1; ri=3600; rua=mailto:f963c114@inbox.ondmarc.com; ruf=mailto:f963c114@inbox.ondmarc.com;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

WR3
from 2026-05-31 to 2026-08-29
Expires in 85 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://mykillik.com/

present
  • strict-transport-security
  • content-security-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' *.zdassets.com *.zendesk.com wss://pod-28-sunco-ws.zendesk.com/sc/faye https://fcmregistrations.googleapis.com https://www.gstatic.com https://fonts.googleapis.com https://fonts.gstatic.com *.cookiefirst.com https://merlin.killik.com https://firebase.googleapis.com https://firebaseinstallations.googleapis.com https://www.googletagmanager.com https://3243564b306646429256f48607323012.apm.eu-west-2.aws.cloud.es.io *.google-analytics.com *.analytics.google.com; script-src 'self' 'unsafe-inline' *.zdassets.com *.zendesk.com https://www.google.com/recaptcha/ https://www.gstatic.com https://storage.googleapis.com *.cookiefirst.com https://merlin.killik.com https://www.googletagmanager.com https://www.youtube.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://merlin.killik.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com *.cookiefirst.com https://merlin.killik.com; img-src 'self' data: *.zdassets.com *.zendesk.com https://me
strict-transport-security
max-age=31556926

Linked from (1)