indexo.dev

oscarstacoshop.com

.com crawl

First seen 2026-05-11 · Last seen 2026-05-11 · ok HTTP/1.1 200 11254 ms crawled 2026-05-17

US · 35.212.66.35 · AS15169 Google LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Oscar's Taco Shop | Best Tacos & Burritos in Nashville, TN
Description
Nashville's favorite Mexican restaurant since 2003. Famous breakfast burritos, carne asada tacos, loaded fries & authentic So-Cal Mexican food. 11 locations across TN, AL & AZ. Order online!
Language
en
Canonical
https://oscarstacoshop.com/

Open Graph

url
https://oscarstacoshop.com/
title
Oscar's Taco Shop | Best Tacos & Burritos in Nashville, TN
description
Nashville's favorite Mexican restaurant since 2003. Famous breakfast burritos, carne asada tacos, loaded fries & authentic So-Cal Mexican food. 11 locations across TN, AL & AZ. Order online!

Technology

Server
nginx
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2008-12-01
Expires
2027-12-01 559 days left
Updated
2025-12-02
Name servers
  • ns1.siteground.net
  • ns2.siteground.net

DNS records live

NS
  • ns1.siteground.net
  • ns2.siteground.net
MX
  • 10 mx10.antispam.mailspamprotection.com
  • 20 mx20.antispam.mailspamprotection.com
  • 30 mx30.antispam.mailspamprotection.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 +a +mx +ip4:35.212.84.178 include:oscarstacoshop.com.spf.auto.dnssmarthost.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; aspf=r; adkim=r;
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8rjlhk4jsZKvlXCgJekTHkyo5PJpqgLMLGxHAK3e5hTYq8fqyRYhT4y2Va7gCG2f8rjmrc8+lXnPKmG5lxB…
selectors probed

Certificate (current)

R13
from 2026-04-16 to 2026-07-15
Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://oscarstacoshop.com/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self), microphone=(), camera=(), payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https: blob:; connect-src 'self' https://*.openfreemap.org https://nominatim.openstreetmap.org https://api.mapbox.com; worker-src 'self' blob:; frame-ancestors 'self';

Links to (3)

Linked from (1)