pyctor.com
HTML metadata
Technology
- Server
- Cowboy
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (1)
- www.youtube.com×1
Social
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2019-04-17
- Expires
- 2027-04-17 332 days left
- Updated
- 2026-04-18
- Name servers
-
- ns09.domaincontrol.com
- ns10.domaincontrol.com
DNS records live
- NS
-
- ns09.domaincontrol.com
- ns10.domaincontrol.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
google-site-verification=Ze5BvmIhf0MmT08iSeghJhz7tKgwQg9e55ppiXvZais
Email authentication weak
- SPF
-
v=spf1 include:dc-aa8e722993._spfm.pyctor.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 49 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; connect-src 'self' wss://www.pyctor.com https://*.pyctor.com; script-src 'self' 'unsafe-eval' https://*.pyctor.com 'nonce-aK2EPmiDXnnsJ5d6SlphyM0sKq01'; font-src 'self' data: https://fonts.gstatic.com/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; frame-src 'self' https://*.pyctor.com https://www.youtube.com; img-src img-src 'self' data: https://*.pyctor.com; child-src 'self'; form-action 'self'; upgrade-insecure-requests;