prems.ai

.ai crawl

First seen 2026-04-29 · Last seen 2026-05-14 · ok HTTP/1.1 200 3079 ms crawled 2026-05-07

US · 216.239.34.21 · AS15169 Google LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Prems AI — Reddit Lead Generation Tool
Description: The premier Reddit lead generation and social listening tool. Find high-intent leads on Reddit, LinkedIn, and Hacker News asking for what you sell.
Language: en
Canonical: https://prems.ai

Open Graph

url: https://prems.ai
title: Prems AI — Reddit Lead Generation Tool
description: Find high-intent leads asking for what you sell on Reddit, LinkedIn, and 8 more platforms. The ultimate social listening tool for proactive outreach.

Technology

Server: Google
CMS: Next.js

Third-party hosts loaded (1)

lmsqueezy.com×1

Social

Contact

Email

contact@prems.ai

Registration

Registrar

NameCheap, Inc.

Created

2023-01-30

Expires

2027-01-30 256 days left

Updated

2026-01-31

Name servers

dns1.registrar-servers.com
dns2.registrar-servers.com

DNS records live

NS

dns1.registrar-servers.com
dns2.registrar-servers.com

MX

10 mx1.privateemail.com
10 mx2.privateemail.com

TXT

Show 7 TXT records

google-site-verification=q9o123thzwemojokbk2OYBZ8USq-EYMq89aZF7WJ_vs
google-site-verification=ry3dwWHDnb4VmtyC383M9tvDmolvVNBqt6-VQ9XTmMI
hosting-site=prems-ai
paddle-verification=31fcb4a3
fah-claim=002-02-5b292cc4-0b7f-4c97-9fe0-23266ec3e679
google-site-verification=MLX5qndQz5DNYsYgQxmfnaPSd2rp82DhUrow0Z18qf4
google-site-verification=ab3QCcxtf_KAImBgQ4tvTQsJrorpQVdTQTbfpvuqpV8

Email authentication strong

SPF

v=spf1 include:spf.privateemail.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

default: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9E1ZuYP4q/lzk728WR4n5hZDfkb5bLZl9/f1KFAIxwm++ysYOUG2Q+Aos1WXYhAa38kftWblAv6tSZpP…

selectors probed

Certificate (current)

WR3

from 2026-05-01 to 2026-07-30

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://prems.ai/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: camera=(), microphone=(), geolocation=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://apis.google.com https://accounts.google.com https://www.gstatic.com https://*.firebaseapp.com https://www.googletagmanager.com https://*.google-analytics.com https://us-assets.i.posthog.com https://challenges.cloudflare.com https://lmsqueezy.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://accounts.google.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https: blob:; frame-src 'self' https://accounts.google.com https://*.firebaseapp.com https://*.firebaseio.com https://challenges.cloudflare.com; connect-src 'self' http://localhost:* https://prems.ai https://*.prems.ai https://*.run.app https://us.i.posthog.com https://us-assets.i.posthog.com https://*.googleapis.com https://*.firebaseio.com wss://*.firebaseio.com https://identitytoolkit.googleapis.com https://securetoken.googleapis.com https://*.google-analytics.com https://www.googletagmanager.com https://firebase.
strict-transport-security: max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups