nonkyc.io

HTML metadata

Title: NonKYC Cryptocurrency Exchange
Description: NonKYC cryptocurrency exchange - Buy and sell cryptocurrencies like Bitcoin, Ethereum, and more on our secure and user-friendly platform. Start trading today.
Language: en
Canonical: https://nonkyc.io/

Open Graph

url: https://nonkyc.io
title: NonKYC cryptocurrency exchange - Buy and sell cryptocurrencies like Bitcoin, Ethereum, and more on our secure and user-friendly platform. Start trading today.
site name: NonKYC

Technology

CDN: Cloudflare

Analytics

Cloudflare Insights

Third-party hosts loaded (2)

code.tidio.co×1
static.cloudflareinsights.com×1

Social

DNS records live

NS

cash.ns.cloudflare.com
piper.ns.cloudflare.com

MX

0 mail.nonkyc.io
5 mail2.nonkyc.io

TXT

detectify-verification=6e61996d17fc209193d67c715bcaf0e5
google-site-verification=YBBjk2eJlQXNV2cXHj02gkrtzoR64DsduogF-lb47x4
google-site-verification=w3L6Nto7gnP-plVT24QCdIV-isJ2KBIwKQKJ1SjX6fI

Email authentication strong

SPF

v=spf1 a mx include:_spf.elasticemail.com include:amazonses.com -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=reject;pct=100;rua=mailto:dmarc-reports@nonkyc.io;ruf=mailto:dmarc-reports@nonkyc.io

policy: reject (enforced) · sp=reject

DKIM

Show 4 DKIM selectors

default: v=DKIM1;h=sha256;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+QWJtlxkeKbN0htFLtqU1tiugiwqZXWvQX8YSrrK1BvRrCU6ccj9GEziriDihxVrs+KAr0…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1FnhwmysmftzcdfmDv63j+yve5nx+juywoO0QzIxdwCEyfD0sQlG6lz6qiyRAx7tcCx7hkrbDwiy+dNp9…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpVmuwxhylVlMMW2UdiwPf9axU6O1cP3/Ve832J+Dys6rOGVL7MPQLs3VoUNHj1FNxMMU8txoef/hZxyEB…

selectors probed

Certificate (current)

WE1

from 2026-03-27 to 2026-06-25

Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://nonkyc.io/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.x.com https://*.twitter.com https://*.cloudflareinsights.com https://*.cloudflare.com https://code.tidio.co https://widget-v4.tidiochat.com;script-src-attr 'self' 'unsafe-inline' 'unsafe-eval' https://*.cloudflare.com;script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' https://*.x.com https://*.twitter.com https://*.cloudflareinsights.com https://*.cloudflare.com https://code.tidio.co https://widget-v4.tidiochat.com;img-src 'self' data: blob: https://*.x.com https://*.twitter.com https://*.nonkyc.io https://*.cloudflare.com https://code.tidio.co https://widget-v4.tidiochat.com https://avatars.tidiochat.com https://tidio-images-messenger.s3.us-east-1.amazonaws.com;media-src 'self' https://code.tidio.co https://widget-v4.tidiochat.com;connect-src 'self' wss://*.nonkyc.io wss://nonkyc.io https://*.nonkyc.io https://*.cloudflare.com https://api-v2.tidio.co wss://socket.tidio.co https://uploads.tidio.com https://socket.tidio.co;fram
strict-transport-security: max-age=15552000; includeSubDomains; preload
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin