indexo.dev

paddlepalace.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-14 · ok HTTP/1.1 200 5098 ms crawled 2026-05-07

Reputation 94/100 dmarc monitor-only

sector sports type ecommerce

HTML metadata

Title
Top Table Tennis Gear | STIGA, Butterfly, Nittaku & More at Paddle Palace
Description
Shop the best table tennis brands at Paddle Palace. From blades to robots, we deliver expert gear, fast shipping, and unmatched customer service.
Canonical
https://www.paddlepalace.com/

Technology

Server
Microsoft-IIS
Analytics
  • Google Tag Manager
Third-party hosts loaded (7)
  • maxcdn.bootstrapcdn.com×3
  • www.facebook.com×2
  • ajax.googleapis.com×1
  • cdnjs.cloudflare.com×1
  • sealserver.trustwave.com×1
  • www.googletagmanager.com×1
  • www.shopperapproved.com×1

Social

Contact

Email
Phone

Registration

Registrar
Network Solutions, LLC
Created
1998-02-13
Expires
2035-02-12 3191 days left
Updated
2025-12-18
Name servers
  • ntserver.mailordercentral.com
  • uuns1.dydacomp.net

DNS records live

NS
  • ntserver.mailordercentral.com
  • uuns1.dydacomp.net
MX
  • 10 mail.paddlepalace.com
TXT
  • 3ostcm30ah0oqjuam48so80ao3
  • brevo-code:25d0dd7531fae35c7516d4f02a01e57b

Email authentication partial

SPF
v=spf1 mx include:mail.site-link.com ip4:50.109.226.21 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

RapidSSL TLS RSA CA G1
from 2025-11-17 to 2026-12-19
Expires in 214 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.paddlepalace.com

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://test.authorize.net https://accept.authorize.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob https://pay.google.com https://js.authorize.net https://jstest.authorize.net/ https://ajax.googleapis.com/ https://maxcdn.bootstrapcdn.com https://cdnjs.cloudflare.com/ https://code.jquery.com/ https://www.googletagmanager.com https://ssl.google-analytics.com https://www.google-analytics.com/ https://www.google.com/ https://www.gstatic.com/ https://ssl.google-analytics.com https://oss.maxcdn.com/ https://www.googleadservices.com/ https://connect.facebook.net/ https://googleads.g.doubleclick.net/ https://connect.facebook.net/ https://bat.bing.com/ https://sibautomation.com/ https://sealserver.trustwave.com/ https://www.shopperapproved.com/ https://s7.addthis.com/ https://paddlepalace.services.answerbase.com/ https://www.gstatic.com/recaptcha/; report-to csp-endpoint; report-uri /SendCspViolation.asp;
strict-transport-security
max-age=31536000

Links to (4)

Linked from (4)