indexo.dev

neofinancial.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-16 · ok HTTP/1.1 200 4689 ms crawled 2026-05-05

US · 18.239.18.36 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Neo Financial™ | Earning, Spending & Credit
Description
Get what you’ve earned with Neo Financial™. Join over 1.3 million Canadians turning everyday effort into real money progress.
Language
en-CA
Canonical
https://www.neofinancial.com
Translations
  • en-ca
  • fr-ca

Open Graph

title
Neo Financial™ | Earning, Spending & Credit
description
Get what you’ve earned with Neo Financial™. Join over 1.3 million Canadians turning everyday effort into real money progress.

Technology

CDN
Vercel
CMS
Next.js
Analytics
  • Amplitude

Third-party hosts loaded (2)

  • cdn.amplitude.com×2
  • n9typqfrnexj4eg9.public.blob.vercel-storage.com×1

Social

Registration

Registrar
Amazon Registrar, Inc.
Created
2004-04-06
Expires
2027-04-06 321 days left
Updated
2026-03-02
Name servers
  • ns-1403.awsdns-47.org
  • ns-1778.awsdns-30.co.uk
  • ns-328.awsdns-41.com
  • ns-602.awsdns-11.net

DNS records live

NS
  • ns-1403.awsdns-47.org
  • ns-1778.awsdns-30.co.uk
  • ns-328.awsdns-41.com
  • ns-602.awsdns-11.net
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 23 TXT records
  • openai-domain-verification=dv-sVgr0ywn9B8fanSFM8DLmXsD
  • configcat-domain-verification=08dc20e9-93f9-4fa7-88c9-74bbc5dc45ea
  • _2ihh9qxl95ct0zz29lbsqv423078vlg
  • anthropic-domain-verification-q89fdh=4pI7QMiDgMboeyQLEiVox1wit
  • pardot993912=c7fcba41d409643f130f444f4b50ab7102e3184304d7c45b2ca2edf16a02adae
  • mongodb-site-verification=SCZJANy7LNSlmRecqQGkgeHaYLoP5ymj
  • slack-domain-verification=RB3nuckh9OM0FstvC4FYW2f65kEl5wfJm9DWD5Re
  • stripe-verification=16179FCE03ED30619CA242BC5FB1857BCBF66C9033A0901FB6B48DB1F4224922
  • teamviewer-sso-verification=9bef82b0fdf04a62af78c20c043db2ca
  • google-site-verification=cj8Xejrz7BsJ0NLAesHmYb0S_KO0EQyMOxoMheIhyfA
  • google-site-verification=efsGgEMEv6sbjmMSlMAxyk4TjBuqJcm6AAmmGjYebjc
  • C0L2O19375
  • whimsical=fe038df32f8c8e55f493b0284bf4df18e5d1dd77
  • apple-domain-verification=osLyF-Dqhtu9p47-c8ypn-PxtTq5EYGB1gw4zqyaIBg
  • anyscale-domain-verification-hpexqv=g9L3e7twBtblZwrsZdyBEpBMB
  • MS=247DC4BCFD00E14629F355F996531AEBD9DC4E62
  • cursor-domain-verification-cxed2r=4cAS0puOq3ZbZQVIODYyLPy2R
  • v=spf1 include:_u.neofinancial.com._spf.smart.ondmarc.com ~all
  • float-verification-code-ea2474aa-dfc7-4551-864c-dcc12d2f2461
  • google-site-verification=4FlBTY2S743vx4L01eQiagDThnQMcqb4-tk7CkUZqNI
  • atlassian-sending-domain-verification=7a10740f-723d-4caa-a005-c9ef50eb68a4
  • rippling-domain-verification=40db462d6aee666c
  • google-site-verification=XmOv2szVvuMWlfloClkpXEZ7IAeCsnUl3uFCHQa7QRI

Certificate (current)

Amazon RSA 2048 M04
from 2026-01-18 to 2027-02-16
Expires in 272 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.neofinancial.com/?

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
geolocation=self, microphone=(), camera=(), payment=(), usb=(), magnetometer=(), gyroscope=(), fullscreen=self
x-content-type-options
nosniff
content-security-policy
default-src 'self' https; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://vercel.live https://googleads.g.doubleclick.net https://snap.licdn.com https://connect.facebook.net https://google-analytics.com https://www.google-analytics.com https://www.googleadservices.com https://insight.adsrvr.org https://cdn.amplitude.com https://sr-client-cfg.amplitude.com https://px.ads.linkedin.com https://www.redditstatic.com https://bat.bing.com https://js.adsrvr.org https://analytics.tiktok.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: https://cms.production.neofinancial.com https://n9typqfrnexj4eg9.public.blob.vercel-storage.com https://vercel.com https://px.ads.linkedin.com https://www.google.ca https://www.google.com https://www.facebook.com https://i.ytimg.com https://www.googletagmanager.com https://insight.adsrvr.org https://bat.bing.com; connect-src 'self' https://cms.production.neofinancial.com https://n9typqfrnexj4eg9.public.blob.verce
strict-transport-security
max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
credentialless
cross-origin-resource-policy
cross-origin

Links to (7)

Linked from (3)