perlego.com

HTML metadata

Title

Perlego | An online subscription for all your academic books

Description

Save up to 90% on textbooks. Read over a million professional and academic ebooks in one simple space.

Language

en

Canonical

https://www.perlego.com

Translations

de
en
es
fr
it

Open Graph

url: https://www.perlego.com
title: Perlego | An online subscription for all your academic books
description: Save up to 90% on textbooks. Read over a million professional and academic ebooks in one simple space.

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Cloudflare Insights
Google Tag Manager

Third-party hosts loaded (3)

intercom.help×2
static.cloudflareinsights.com×1
www.googletagmanager.com×1

Social

Contact

Phone

246681777

Registration

Registrar

GoDaddy.com, LLC

Created

2014-01-20

Expires

2031-01-20 1706 days left

Updated

2025-10-20

Name servers

elmo.ns.cloudflare.com
ingrid.ns.cloudflare.com

DNS records live

NS

elmo.ns.cloudflare.com
ingrid.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

apple-domain-verification=tR94cxXQn4NGG3BZ
google-site-verification=9pCLoX8Xls5IVHpKLCAA96APCG_z8U1AMVt04D4_8vQ

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:spf.mandrillapp.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:re+lf35zgum9gb@dmarc.postmarkapp.com; sp=none; aspf=r;

policy: quarantine · sp=none

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkSfY+VOznBT2GoXYCT/barytBTeyw7S8kPrDwEvTZMcVMKPrKjpDuxghOeiFm+MmVTbrm16B6yhywG…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

E7

from 2026-05-05 to 2026-08-03

Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.perlego.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: deny
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' https: 'report-sample' 'unsafe-inline' 'unsafe-eval' https://ajax.cloudflare.com https://analytics.tiktok.com https://bat.bing.com https://js.adsrvr.org https://js.stripe.com/v3/ https://*.ipstatp.com https://sc-static.net https://secure.heat6have.com https://rec.smartlook.com https://fast.appcues.com https://maps.googleapis.com/maps/api/js https://maps.googleapis.com https://widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://snap.licdn.com https://*.ibytedtos.com https://stats.g.doubleclick.net stats.g.doubleclick.net https://cdn.embed.ly/player-0.1.0.min.js nexus.ensighten.com https://*.sentry.io https://*.sentry-cdn.com https://*.cypress.io wss://*.hotjar.com *.hotjar.com *.hotjar.io https://*.hotjar.io https://*.hotjar.com https://*.intercom.io wss://*.intercom.io *.intercom.io https://*.intercomcdn.com https://intercom-sheets.com https://*.intercom-sheets.com *.intercom-
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (7)

Linked from (2)

tlaeducation.org.uk×2
theibs.uk×1