nexlabs.io

.io crawl

First seen 2026-04-16 · Last seen 2026-05-11 · ok HTTP/1.1 200 684 ms crawled 2026-05-11

US · 76.76.21.21 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

NS

TXT

wallet-connect-dns-verification=8ee49f124f17b63e5d0f0b19ec6d215320e1dd023405fb222a13697d817ab029google-site-verification=yk2H51avY4cfqHZ-YeruWR7Npdgx4OdwTwWKgz0Vs54

SPF

not published

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVMY4vaNPFjOWg25jK8ZiCNUrI3Pe7uCceAwaH8YOTiYE47za2QC2q8FJ9miKXHDiPr2DHiW5A1aOb4b70…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVjlHjxN1cYfRBZGfboFe6Q1PjFay6r+6dWsnhG1fsFEYZxl/YS4sfxQBDQpsZuMG3BEnNF+cn0pGqfdte…

selectors probed

R13

from 2026-04-15 to 2026-07-14

Expires in 56 days

Header hygiene 90/100 Checked live page: https://www.nexlabs.io/

present

findings

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: camera=(), microphone=(), geolocation=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.vercel-scripts.com https://vercel.live; style-src 'self' https://vercel.live 'unsafe-inline'; img-src 'self' data: blob: https: https://vercel.live https://vercel.com data: blob:; font-src 'self' https://vercel.live https://assets.vercel.com; connect-src 'self' https: ws: wss: * https://vercel.live wss://ws-us3.pusher.com; frame-src 'self' blob: https://embedded-wallet.thirdweb.com https: http: https://vercel.live; frame-ancestors 'none'; form-action 'self'; base-uri 'self'; object-src 'self' data:; upgrade-insecure-requests
strict-transport-security: max-age=63072000
cross-origin-opener-policy: unsafe-none