onasaez.com

.com crawl

First seen 2026-05-03 · Last seen 2026-05-16 · ok HTTP/1.1 200 5685 ms crawled 2026-05-10

US · 188.114.96.3 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

Ona Saez | Tienda oficial de ropa Ona Saez

Language

Generator

Divi v.4.27.4

Canonical

https://www.onasaez.com/

Feeds

Ona Saez » Feed RSS
Ona Saez » Feed de los comentarios RSS

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Cloudflare Insights
Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (7)

static.klaviyo.com×2
stats.wp.com×2
www.googletagmanager.com×2
accounts.google.com×1
fonts.googleapis.com×1
static.cloudflareinsights.com×1
www.facebook.com×1

Social

Contact

Phone

Address

st url = 'https://web.whatsapp.com/send?phone=54911

Registration

Registrar

INWX GmbH

Created

1998-10-21

Expires

2026-10-20 153 days left

Updated

2024-10-28

Name servers

anahi.ns.cloudflare.com
tony.ns.cloudflare.com

DNS records live

NS

anahi.ns.cloudflare.com
tony.ns.cloudflare.com

MX

0 mail.onasaez.com
10 correo.onasaez.com
50 smtpin-m1.moncloud.mc

TXT

klaviyo-site-verification=TBW5K7

Email authentication strong

SPF

v=spf1 include:spf.moncloud.mc ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; adkim=s; rua=mailto:dmarc@onasaez.com; ruf=mailto:dmarc@onasaez.com; fo=1; pct=100; rf=afrf; ri=86400

policy: reject (enforced)

DKIM

default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyY8RJyxiWWho3DeDpoPNGtrg0DESoJxkLhmHda29oWjquH+/QyG/jU7LA/gtGOrRPrwx60hDssI0bzTyFBHay…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WE1

from 2026-05-04 to 2026-08-02

Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.onasaez.com/

present

strict-transport-security
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing Content Security Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options: nosniff
strict-transport-security: max-age=15768000; includeSubDomains