okpilot.com

.com crawl

First seen 2026-05-29 · Last seen 2026-05-29 · ok HTTP/1.1 200 281 ms crawled 2026-05-31

CH · 178.22.68.147 · AS50837 Cloudsigma Ag

Reputation 94/100 dmarc partial coverage

Classifying

HTML metadata

Title: OKpilot
Language: en

Technology

Server: nginx

Registration

Registrar

Gandi SAS

Created

2007-11-08

Expires

2026-11-08 156 days left

Updated

2025-11-06

Name servers

maya.ns.cloudflare.com
roan.ns.cloudflare.com

DNS records live

NS

maya.ns.cloudflare.com
roan.ns.cloudflare.com

MX

5 mail.ecodev.ch

Verified for

Google

Email authentication strong

SPF

v=spf1 a mx -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@ecodev.ch; pct=10

policy: quarantine · pct=10

DKIM

dkim: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqf6gA8dexS8EMZJcdIcT5edS82p36bNzagRuPoOK3uu86HXCk3080nWJ14GV9xVTlsVkWPfZEWV8gOFsvPNBu…

selectors probed

Certificate (current)

R13

from 2026-05-19 to 2026-08-17

Expires in 74 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://okpilot.com/en

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.ecodev.ch; connect-src 'self' *.ecodev.ch; img-src 'self' data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.ecodev.ch; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; frame-ancestors 'self'; form-action 'self'; object-src 'none'; base-uri 'self';
strict-transport-security: max-age=31536000;

Linked from (1)

ecoentreprise.ch×1