otonomos.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-07 · ok HTTP/1.1 200 2124 ms crawled 2026-05-07

US · 18.66.102.5 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

sector tech type homepage

HTML metadata

Title: Otonomos
Description: Otonomos is a global company registration platform for tech businesses.
Language: en

Open Graph

url: https://otonomos.com
title: Otonomos
site name: Otonomos
description: Otonomos is a global company registration platform for tech businesses.

Technology

CDN: Amazon CloudFront
CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (3)

otonomos-web-public-assets.s3.us-west-2.amazonaws.com×56
t.contentsquare.net×1
www.googletagmanager.com×1

Social

Contact

Email

support@otonomos.com

Registration

Registrar

NameCheap, Inc.

Created

2014-03-27

Expires

2028-03-27 678 days left

Updated

2023-03-24

Name servers

jim.ns.cloudflare.com
olga.ns.cloudflare.com

DNS records live

NS

jim.ns.cloudflare.com
olga.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 8 TXT records

brevo-code:4c1a409901ea9bb7914a3a8dae66ca49
google-site-verification=89hPAZG5iu6zvBg5nSCkuuvUxWZ30kRXCmA8zsk4bEg
google-site-verification=LIo-Bs_KrHMh2bQshGS1uK6qMyqGpk-fqqMXsudSN2Q
google-site-verification=Stl7z-1uLnaQ6zoQIH42dMYoHdTxzDr3DnkjVFckhlE
google-site-verification=XSTciGaGkO5IowFRkJzfOU1A9liihl6SG5wbVfyPpIE
linkedin-site-verification=ea87c80e-f535-43b7-98b2-3cbf50abf818
protonmail-verification=7d48005a6461fb6293e66fcea303f0d5f0bef115
00Dal00001Niqzd=1TBVz00000008AW

Email authentication strong

SPF

v=spf1 include:_spf.protonmail.ch mx include:_spf.google.com ~all include:zcsend.net ~all

softfail (~all)

DMARC

v=DMARC1; p= reject; rua=mailto:marcio@otonomos.com; rua=mailto:rua@dmarc.brevo.com

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxcOmu5xcAcaG5ITqOBnu/0hkwhFVHIhxmROMeW/ioWFJnUT8gFXgFYOF0WlyPzSh9IJyn6Cv4xnnO…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvx0sVoE4j/g7mKUAw+GCtgGjZUXY3S6x1NliTLXZS1yHFMHkabaCNSSjZILOVhY7maNMZni9U1+ghU/bi…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywaQcZyEeg58sTQ+1NseabmkZpaQswW6w3Q82i8pJs9uYZp0fB/HlZkiKMBiC1w6PkWYRm/5xrizjTzlpl…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-12-09 to 2027-01-08

Expires in 234 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://otonomos.com/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self'; connect-src 'self' https://admin-api.otonomos.com https://database-bucket-test.s3.us-west-2.amazonaws.com/ https://auth.privy.io wss://relay.walletconnect.com wss://relay.walletconnect.org wss://www.walletlink.org https://*.rpc.privy.systems https://explorer-api.walletconnect.com https://cdn.jsdelivr.net/npm/world-atlas/countries-110m.json https://test-otonomos-public.s3.us-west-2.amazonaws.com https://otonomos-web-public-assets.s3.us-west-2.amazonaws.com https://api.web3modal.org https://pulse.walletconnect.org https://*.contentsquare.net https://*.contentsquare.com https://www.google-analytics.com https://*.google-analytics.com https://www.googletagmanager.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://challenges.cloudflare.com https://cdn.jsdelivr.net/npm/globe.gl https://*.contentsquare.net https://app.contentsquare.com https://www.googletagmanager.com; img-src 'self' blob: data: https://explorer-api.walletconnect.com https://otonomos-web-public-as

Links to (30)

Linked from (1)

zebulive.xyz×2