plume.com

HTML metadata

Technology

CDN

Amazon CloudFront

Server

istio-envoy

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (2)

• fonts.gstatic.com×1
• www.googletagmanager.com×1

Social

• instagram
• linkedin

Registration

Registrar

Amazon Registrar, Inc.

Created

2000-09-26

Expires

2026-09-26 130 days left

Updated

2025-08-22

Name servers

• ns-1221.awsdns-24.org
• ns-1573.awsdns-04.co.uk
• ns-424.awsdns-53.com
• ns-991.awsdns-59.net

DNS records live

NS

• ns-1221.awsdns-24.org
• ns-1573.awsdns-04.co.uk
• ns-424.awsdns-53.com
• ns-991.awsdns-59.net

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

Show 25 TXT records

• onetrust-domain-verification=f0b6b556976a42c8a6d63b60d489ba8a
• openai-domain-verification=dv-rJEq0iE56rzaykq7ybmvFs66
• adobe-idp-site-verification=9d2cb820218c743f364852c17781354866e23d8d9e2b8a63eb550ec47707b026
• facebook-domain-verification=egtt7efflyvzrbjn9jnba9nt6v0ca6
• google-site-verification=KJA2i6cwZN4TaFFvJvm3ZgNzjYBPZ6-kJ4mw1KZoVew
• cursor-domain-verification-sxvzmn=Ok6upjZnKerLKHq9Jw1sVargZ
• YAfBN73ceoyGUEg+LJ06cnVbxa0=
• shopify-verification-code=kyQRXnSFOOjZPa9OyuHHExKlVNpfQD
• _globalsign-domain-verification=CKAaCLLrCuXbFwZeivI4XPFtDzWfbxbEX6QCL8Hjr_
• monday-com-verification=vQQvR-tp17egRjwiYcIZ5Tcvdp4GreSiBKjWMtVtUO0
• twilio-domain-verification=5d2e2bb9e8d401c2f0a69f9cbad32ea0
• google-site-verification=SHffQse8wZtYiRfsyVLxL2a0AIosubMNSXagLfcATgA
• MS=ms40713668
• slack-domain-verification=9FMdrQV9JlTOSxBSoPvApXs91GS1wkfWkvZkr4Vj
• google-site-verification=HSxzKMDSz-T2eoJSbjSMd8LpbxCudcZ8vcgoTO3WYX0
• 00d6g000003qtwfeak
• new-relic-domain-verification=a557768063fa4666a8f6861236fd0092
• anthropic-domain-verification-zpdd3w=ULilDGK6nhNNwFg2ghdbpcSeh
• atlassian-domain-verification=7Xt8pdk4/El5CpKax5zV9I3e8BbkAgGhKsGtNKul0bM4JUQpFwH/lB8lTETUjBrW
• DPwNYBYQ=91ff4e6b68e14a6fb8d629b2551a0b9c
• _globalsign-domain-verification=s8ZzYHCLjh7_N328hmwS6GS0PWgT_W_Vc9CUsZElWm
• apple-domain-verification=KdA0K5h2ydMELA56
• google-site-verification=8vTELtgxLX8rLoMBw6p_QxGMAI8XVlC93-c9uEtHKcM
• mixpanel-domain-verify=03db7813-474a-4ce1-b679-24c4bbbb2ce3
• google-site-verification=XZo_pQek3-2y3dMZdwpZv4d6ZLsE6j5SIPdZ5stfdjs

Email authentication strong

SPF

v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email include:mail.zendesk.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email

policy: reject (enforced)

DKIM

• google: v=DKIM1; k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZAXtu8OXdt3U2XWLyKmYFovOkEKtST7yQyhFOu0DfqIw9oA4ouPlwqLrG/PLIyu5UYgtvzf8…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyISXmn6KTDa76mLDjZ16tWZfFcNi9A01ZAe484FQYb3M4kK3QCG5xt1Kz1X9wGg+XjHjGuA0so9b0/tbd5…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbq31d6eeF5wsrgJDK2ubJ2o8gOKi7mPNHVZQRPA+x4klFt5Ud+kgKqrnDX5i8x6bL2Z2MwBbLIhNRbaEugNwS6M…
• smtpapi: v=DKIM1; k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprz…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.plume.com/

present

• strict-transport-security
• content-security-policy
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing frame protection

Links to (6)

• apple.com×2
• google.com×2
• instagram.com×2
• linkedin.com×2
• opensync.io×2
• sweepr.com×2

Linked from (3)

• opensync.io×2
• ispa.org.uk×2
• aeronetpr.com×1