indexo.dev

onfleet.com

.com crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 1183 ms crawled 2026-05-31

US · 76.223.78.9 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Last Mile Delivery Software for Dispatch and Route Management
Description
Optimize your dispatch and effortlessly manage your routes with Onfleet, the #1 last-mile delivery software for couriers and delivery businesses.

Open Graph

url
https://onfleet.com
title
Onfleet - Delightful delivery management software
site name
Onfleet
description
Delightful delivery management. Local deliveries are complicated enough. Your software doesn't need to be.

Technology

Server
nginx
jQuery
3.5.1
Social widgets
  • YouTube Embed
Third-party hosts loaded (11)
  • d3jsrlr7ydwqi5.cloudfront.net×45
  • ajax.googleapis.com×1
  • dev.visualwebsiteoptimizer.com×1
  • inorganik.github.io×1
  • js.hs-scripts.com×1
  • js.hsforms.net×1
  • script.crazyegg.com×1
  • transcend-cdn.com×1
  • ws.zoominfo.com×1
  • www.facebook.com×1
  • www.youtube.com×1

Social

Registration

Registrar
Gandi SAS
Created
2000-09-06
Expires
2026-09-06 97 days left
Updated
2025-08-06
Name servers
  • ns-1286.awsdns-32.org
  • ns-2021.awsdns-60.co.uk
  • ns-236.awsdns-29.com
  • ns-636.awsdns-15.net

DNS records live

NS
  • ns-1286.awsdns-32.org
  • ns-2021.awsdns-60.co.uk
  • ns-236.awsdns-29.com
  • ns-636.awsdns-15.net
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 5 TXT records
  • pardot303501=0ee7f5b817182065d252aa9d13b2c4f11ab89e6065807315a6befb4434cf6ed8
  • pardot303501=6b8e43ce23e1fa454ebe466da191a0643b26d649f2d28b8586a62d3bf41052a3
  • pardot303501=a5ef806e6d1675181c645d0a2f82b6f323c202884eb1837e1bd3eadf0e894e43
  • status-page-domain-verification=qrh4p7tv7nks
  • OSSRH-81328
Verified for
  • Atlassian
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:mail.zendesk.com include:stspg-customer.com include:39877435.spf07.hubspotemail.net include:spf.mandrillapp.com include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:re+ec8112be0e94@inbound.dmarcdigests.com
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHOf/J/qFtaX4WS7+yG6sAthUs+ABnY7PWn2kDO3hOxW27t/OTRvbax9D2GB+WmpzOlc1d48HPYLLP…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-09 to 2026-07-09
Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://onfleet.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; worker-src blob: ; media-src *.stripe.com static.olark.com lp.onfleet.com; img-src *.visualwebsiteoptimizer.com onfleet.com *.linkedin.com *.stripe.com *.reddit.com *.facebook.com *.hubspot.com data: *.google.com *.google-analytics.com *.google.co.uk *.bing.com *.clarity.ms *.cloudfront.net *.hsforms.com *.cloudinary.com *.olark.com *.twitter.com cdn.jsdelivr.net *.jsdelivr.net; script-src-elem onfleet.com *.vector.co d-code.liadm.com *.usbrowserspeed.com *.ip-api.com *.jsdelivr.net *.stripe.com *.youtube-nocookie.com *.doubleclick.net *.listenlayer.com *.redditstatic.com *.youtube.com *.olark.com *.licdn.com cdn.sitesearch360.com *.google-analytics.com *.googletagmanager.com *.hs-scripts.com *.cloudfront.net *.googleapis.com *.hsadspixel.net *.hubspot.com *.hs-analytics.net *.hs-banner.com static.olark.com transcend-cdn.com script.crazyegg.com *.clarity.ms js.hsforms.net cdn.segment.com *.facebook.net dev.visualwebsiteoptimizer.com www.google.com www.gstatic.com js
strict-transport-security
max-age=31536000; includeSubDomains

Links to (10)

Linked from (1)