indexo.dev

peakpayment.com

.com crawl

First seen 2026-06-02 · Last seen 2026-06-03 · ok HTTP/1.1 200 1056 ms crawled 2026-06-03

US · 54.172.93.95 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Peak Payment Solutions - Billing, Software, Made Easy
Description
Peak Payment Solutions - Billing, Software, Made Easy
Language
en

Technology

Server
Apache
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×1

Contact

Phone

Registration

Registrar
Gandi SAS
Created
2015-12-12
Expires
2026-12-12 190 days left
Updated
2025-11-07
Name servers
  • ns-1354.awsdns-41.org
  • ns-1841.awsdns-38.co.uk
  • ns-24.awsdns-03.com
  • ns-540.awsdns-03.net

DNS records live

NS
  • ns-1354.awsdns-41.org
  • ns-1841.awsdns-38.co.uk
  • ns-24.awsdns-03.com
  • ns-540.awsdns-03.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com

Email authentication strong

SPF
v=spf1 include:mailgun.org include:mail.zendesk.com include:_spf.google.com include:amazonses.com include:servers.mcsv.net ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc@peakpayment.com;
policy: reject (enforced)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2025-09-18 to 2026-10-17
Expires in 134 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.peakpayment.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://cdn.peakpayment.com https://ajax.googleapis.com https://www.google.com https://www.gstatic.com https://kit.fontawesome.com https://code.jquery.com https://cdn.datatables.net https://commercehub-secure-data-capture.fiservapps.com https://connect.facebook.net https://pay.google.com https://applepay.cdn-apple.com https://*.token.awswaf.com https://*.captcha.awswaf.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.gstatic.com https://cdn.jsdelivr.net https://cdn.peakpayment.com https://cdnjs.cloudflare.com https://ka-f.fontawesome.com https://cdn.datatables.net https://code.jquery.com https://maxcdn.bootstrapcdn.com https://stackpath.bootstrapcdn.com https://applepay.cdn-apple.com; font-src 'self' data: https://fonts.gstatic.com https://ka-f.fontawesome.com https://cdnjs.cloudflare.com https://maxcdn.bootstrapcdn.com https://cd
strict-transport-security
max-age=31536000; includeSubDomains

Linked from (1)