penzu.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 4587 ms crawled 2026-05-19

US · 54.86.191.201 · AS14618 Amazon.com, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title: Write In Private: Free Online Diary And Personal Journal | Penzu
Description: Penzu is a free online diary and personal journal focused on privacy. Easily keep a secret diary or a private journal of notes and ideas securely on the web.
Language: en
Canonical: https://penzu.com

Open Graph

url: https://penzu.com
title: Penzu
locale: en_US
site name: Penzu
description: Free personal journal and online diary.

Technology

Server: nginx
CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Registration

Registrar

NameCheap, Inc.

Created

2008-01-06

Expires

2033-01-06 2423 days left

Updated

2023-11-14

Name servers

ns-1513.awsdns-61.org
ns-1728.awsdns-24.co.uk
ns-5.awsdns-00.com
ns-887.awsdns-46.net

DNS records live

NS

ns-1513.awsdns-61.org
ns-1728.awsdns-24.co.uk
ns-5.awsdns-00.com
ns-887.awsdns-46.net

MX

Show 7 MX records

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com
20 alt2.aspmx.l.google.com
30 aspmx2.googlemail.com
30 aspmx3.googlemail.com
30 aspmx4.googlemail.com
30 aspmx5.googlemail.com

TXT

google-site-verification=WT1CdNftu8d-JvKoXxJG94mozdVSVoGlGyf07SGnXIA

Email authentication partial

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ovOtK4iaesE6dTBovrfK/CcNIRDk18eVumLOpsVTpQlCAz6aw1VifmTE4bNm8saPe307ebRsi8x3BIqQ4…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHlpUvlLIMDaXv/5lprWKJQI5VbJ1PwzVKQ2Nss2g+0oDbnL1x8iKCAR5dnyB+/rbp/O2R5nCXLru5R3gR…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-09-02 to 2026-10-02

Expires in 135 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://penzu.com/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src https: 'unsafe-eval' 'unsafe-inline'; object-src 'none'; frame-ancestors 'self' https://penzu.com; img-src 'self' data: 'unsafe-inline' https: 'unsafe-eval' 'unsafe-inline';

Links to (2)

twitter.com×4
facebook.com×4