indexo.dev

nano-banana.ai

.ai crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 2126 ms crawled 2026-05-19

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Nano Banana | Nano Banana 2 - Free AI Image Generator & Editor
Description
Create stunning AI images with Nano Banana. Now upgraded to Nano Banana 2 - free AI image generator powered by Google Gemini. Edit photos, generate art, remove backgrounds and more.
Language
en
Canonical
https://www.nano-banana.ai
Translations
  • ar
  • cs
  • da
  • de
  • en
  • es
  • fr
  • id
  • it
  • ja
  • ko
  • nl
  • no
  • pl
  • pt
  • ru
  • sv
  • th
  • tr
  • vi
  • zh

Open Graph

title
Nano Banana | Nano Banana 2 - Free AI Image Generator & Editor
locale
en_US
site name
Nano Banana
description
Create stunning AI images with Nano Banana. Now upgraded to Nano Banana 2 - free AI image generator powered by Google Gemini. Edit photos, generate art, remove backgrounds and more.

Technology

CDN
Vercel
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×3

Social

Contact

Email

Registration

Registrar
Spaceship, Inc.
Created
2025-08-14
Expires
2027-08-14 450 days left
Updated
2025-09-04
Name servers
  • nelly.ns.cloudflare.com
  • isaac.ns.cloudflare.com

DNS records live

NS
  • isaac.ns.cloudflare.com
  • nelly.ns.cloudflare.com
MX
  • 0 mx1.spacemail.com
  • 0 mx2.spacemail.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:spf.spacemail.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:support@nano-banana.ai; pct=100
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-22 to 2026-07-21
Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.nano-banana.ai/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google.com *.googletagmanager.com *.gstatic.com *.googleapis.com *.googleadservices.com *.doubleclick.net *.googlesyndication.com; style-src 'self' 'unsafe-inline' *.googleapis.com; img-src 'self' data: blob: https: *.google.com *.googletagmanager.com *.google-analytics.com *.googleadservices.com *.doubleclick.net *.googlesyndication.com; media-src 'self' blob: data: https://showcase.nano-banana.ai https://*.cloudflarestorage.com https://tempfile.aiquickdraw.com; font-src 'self' *.googleapis.com *.gstatic.com; connect-src 'self' *.google.com *.googleapis.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com *.doubleclick.net *.googlesyndication.com *.openpanel.dev *.cloudflarestorage.com *.nano-banana.ai *.fal.media *.workers.dev; frame-src 'self' *.google.com *.doubleclick.net *.googleadservices.com; object-src 'none'; base-uri 'self';
strict-transport-security
max-age=63072000

Links to (3)

Linked from (5)