indexo.dev

mystayinternational.com

.com crawl

First seen 2026-04-25 · Last seen 2026-05-15 · ok HTTP/1.1 200 1165 ms crawled 2026-05-18

US · 75.2.60.5 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Mystay International
Language
en
Generator
Hugo 0.42

Technology

CDN
Netlify
CMS
Hugo
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • res.cloudinary.com×7
  • cdnjs.cloudflare.com×3
  • stackpath.bootstrapcdn.com×2
  • code.jquery.com×1
  • fonts.googleapis.com×1

Contact

Phone

Registration

Registrar
GoDaddy.com, LLC
Created
2014-10-09
Expires
2026-10-09 141 days left
Updated
2024-10-11
Name servers
  • ns05.domaincontrol.com
  • ns06.domaincontrol.com

DNS records live

NS
  • ns05.domaincontrol.com
  • ns06.domaincontrol.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • v=DMARC1; p=none; rua=mailto:dev@homestaynetwork.org

Email authentication partial

SPF
v=spf1 a mx include:spf.mtasv.net include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dev@homestaynetwork.org
policy: none (monitoring only)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAipp0AazUs0LQorFd1iAOdpIgaqmgVj5q0Y2C17j9UqWQQlYBxMHYUFGqkzRXATJAitbD1pFb6Qd/mn…
selectors probed

Certificate (current)

E8
from 2026-04-01 to 2026-06-30
Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://mystayinternational.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
geolocation=(), microphone=()
x-content-type-options
nosniff
content-security-policy
upgrade-insecure-requests; default-src 'self'; script-src 'self' *.bootstrapcdn.com *.googleapis.com *.cloudflare.com *.jquery.com *.formspree.io; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com *.googleapis.com *.cloudflare.com *.jquery.com; img-src 'self' 'unsafe-inline' *.cloudinary.com; font-src 'self' *.gstatic.com; object-src 'none'; base-uri 'self'; connect-src 'self' code.jquery.com formspree.io; report-uri https://64ed6a2ba068cd9821c1c465.endpoint.csper.io/?v=0;
strict-transport-security
max-age=31536000

Links to (1)

Linked from (1)