obscura.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-07 · ok HTTP/1.1 200 2467 ms crawled 2026-05-09

US · 155.138.229.200 · AS20473 The Constant Company, LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

Obscura VPN | Privacy that’s more than a promise

Description

Available for Mac. Download today.

Language

Canonical

https://obscura.com/

Feeds

Obscura Blog RSS Feed RSS

Open Graph

url: https://obscura.com/
title: Obscura VPN | Privacy that’s more than a promise
site name: Obscura
description: Available for Mac. Download today.

Technology

Third-party hosts loaded (1)

mastodon.social×1

Social

Contact

Email

support@obscura.net

Registration

Registrar

Gandi SAS

Created

1995-02-21

Expires

2027-02-21 276 days left

Updated

2026-02-01

Name servers

cameron.ns.cloudflare.com
may.ns.cloudflare.com

DNS records live

NS

cameron.ns.cloudflare.com
may.ns.cloudflare.com

MX

1 smtp.google.com

Verified for

Google

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

from 2026-03-13 to 2026-06-11

Expires in 22 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://obscura.com/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' data: https://v1.api.prod.obscura.net; frame-src https://connect-js.stripe.com https://js.stripe.com; img-src 'self' data: https://*.stripe.com; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' blob: https://connect-js.stripe.com https://js.stripe.com; style-src 'self' 'unsafe-inline' sha256-0hAheEzaMe6uXIKV4EehS9pu1am1lj/KnnzrOYqckXk=;