phantombuster.com

.com crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 92 ms crawled 2026-06-01

US · 3.164.206.39 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector tech type homepage

HTML metadata

Title: PhantomBuster
Language: en

Technology

CDN: Amazon CloudFront
Server: AmazonS3

Third-party hosts loaded (4)

cdn.announcekit.app×1
js.userpilot.io×1
www.google.com×1
www.gstatic.com×1

Registration

Registrar

Gandi SAS

Created

2013-09-20

Expires

2027-09-20 474 days left

Updated

2026-01-08

Name servers

ns-1491.awsdns-58.org
ns-2014.awsdns-59.co.uk
ns-318.awsdns-39.com
ns-790.awsdns-34.net

DNS records live

NS

ns-1491.awsdns-58.org
ns-2014.awsdns-59.co.uk
ns-318.awsdns-39.com
ns-790.awsdns-34.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

MS=37BD3A43B848CCA78CFBDFBFA466CB57B7697EFD
hubspot-developer-verification=MDkwNjU5NzctMzE0Zi00NjMzLWFlYTItNGFiNzJhZmU2Y2Qy

Verified for

Ahrefs
Brevo
Google
Meta
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.mandrillapp.com include:_mailcust.gandi.net include:servers.mcsv.net include:_spf.google.com include:spf.sendinblue.com include:mail.zendesk.com ?all

neutral (?all)

DMARC

v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400

policy: none (monitoring only) · sp=none

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0I2sBVxYDjUSlfwmL8YTeykwMuqFAne+l0CyKTuvd0AAWMAHFrQScwnvc+HkDn4sGbXjLUUX08hNC…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-03-28 to 2026-10-12

Expires in 131 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://phantombuster.com/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src wss://phantombuster.zendesk.com wss://*.zopim.com wss://*.hotjar.com wss://*.appcues.net wss://*.appcues.com wss://*.userpilot.io wss://eu.socket.novu.co https: 'unsafe-eval' 'unsafe-inline'; img-src https: data:; object-src 'none'; frame-ancestors 'none'

Linked from (1)

sales-leads-crm.com×1