indexo.dev

q2.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1137 ms crawled 2026-05-18

US · 199.60.103.197 · AS209242 Cloudflare London, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Digital Banking Solutions for Banks and Credit Unions | Q2
Description
Q2 creates simple, smart, end-to-end banking and lending experiences that make you an indispensable partner on your customers’ financial journeys.
Language
en
Generator
HubSpot
Canonical
https://www.q2.com

Open Graph

url
https://www.q2.com
title
Digital Banking Solutions for Banks and Credit Unions | Q2
description
Q2 creates simple, smart, end-to-end banking and lending experiences that make you an indispensable partner on your customers’ financial journeys.

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • fonts.googleapis.com×3
  • fast.wistia.net×2
  • cdn.cookielaw.org×1
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
10355 Pecan Park Boulevard, 78729, Austin, Texas

Registration

Registrar
GoDaddy.com, LLC
Created
1995-09-25
Expires
2028-09-24 859 days left
Updated
2022-10-27
Name servers
  • ns41.domaincontrol.com
  • ns42.domaincontrol.com

DNS records live

NS
  • ns41.domaincontrol.com
  • ns42.domaincontrol.com
MX
  • 0 q2-com.mail.protection.outlook.com
TXT
Show 32 TXT records
  • docusign=7ab2f174-b619-45ed-82d2-05294f63a530
  • docusign=775f0bd5-f6b5-4c6f-89e2-f9951bc37692
  • cursor-domain-verification-k8apmn=r254eu5JogVfjfCf89tlPwGVV
  • openai-domain-verification=dv-rPmiGSI7m2AEB3tkIxjsqKUk
  • ZOOM_verify_sFY3bJvxQR-R-8uQQneoOA
  • confluent-verification=52354f77-4331-418e-924e-dff3c5a406d0
  • adobe-idp-site-verification=11f800ebe456dc811bafab4acb098c9c2db7d2abde70ab0548fb154405b94037
  • google-site-verification=3V8Xo87aifJjPUSPEkZi0uPLDrcYlT98QWt2SJNHq14
  • mongodb-site-verification=LiBInLWAyBjdorwN2oIfS0gf3XeLTLjz
  • postman-domain-verification=a31654a4f677ab74f245d0cdf2d8031c5a2f25db4ed54bb75ae00d022d42b15a324f4629decaf841e5bd4f842112ab7c88bdeaafaa18032751c306d6db2c710c
  • jamf-site-verification=CT_OoFy_gtZ4jfQGxIaRMg
  • wrike-verification=MTQ0NTYwNDo3Y2NhOWM0ZDIyY2Y0YjExNTVjMjg5OTlmNTM5M2M0Y2I4YzVhYjc1NjNmNDhmYTBhOWRmODRiOGI1ZmRiMjlj
  • adobe-idp-site-verification=4c1834d31ef2aaeca0f19b1b291865d0aee2a184c559621d722206c40291ef0e
  • anthropic-domain-verification-hrzsct=0AusFlilEU4yJPTvRcx3MkK6G
  • ca3-aa2ddaec324d4efa87f46cbfc9f4bbc7
  • pardot683303=b73211cb829b1c06e3b0e9dd04da97c9d8f0181ae6d09749db0d1f9d915a02d5
  • knowbe4-site-verification=0e8559f19b4c7656a9511a697fda1ee5
  • hcp-domain-verification=917a9c36e3e5adf1875e438206c79c41056c74e450377fc9bf1fa0a801ed1615
  • postman-domain-verification=ee8cac82beaf91aacfbee95e93c642dbca378ada2efa5a9d9562041f1bb18d129c2ef34dcaf7c33abaac6f5ff791748d33c539b40dcf5d48c0c39aa6484463a0
  • _jrj82ks9n3fj4ing6xuwhdjbrlq9vz8
  • pardot683303=058317a356c2040858c4323f20fda27e840e9b5f0d13f121453c81513dc5e565
  • atlassian-domain-verification=TUPeovPhiaxJXESibBxGt8htIUwU5yKbvNI7lGVyAbtF6E5atJwR8yhM1N3DwajA
  • zoho-verification=zb81195230.zmverify.zoho.com
  • pardot683303=817da80b8728ca91911e23b7dbea326d2583712c4baf4886ae869a02d3484e21
  • pendo-domain-verification=8463b037-ed1c-4f72-8b3d-c50be153fa3d"
  • dell-technologies-domain-verification=q2.com_f1032049-92a9-4663-b125-65f8deb8f3b0_1725479296
  • atlassian-domain-verification=axK0tH-a24FfOIf9ryhwPVaTFsc8/+oR834TI/WouIAVYccv8MewH+JBjVcAQrng
  • google-site-verification=E8cNP7NS4VHkFjZrvdbN1BrWT-6s7fAS9IGbEfpWzDU
  • atlassian-sending-domain-verification=ecf57860-5966-4fd9-a9d5-938f34f0ea6e
  • google-site-verification=RV2JcYHIl4Qk1pzAqiMctMv0cSYzDeLVjoMjM168Z7o
  • apple-domain-verification=Xiq1aAcdetTDfJIi
  • facebook-domain-verification=1rytc2mp7v7fa3k68wchqh3w5h4cfw

Email authentication strong

SPF
v=spf1 ip4:23.21.109.197 ip4:23.21.109.212 ip4:147.160.167.0/26 ip4:52.60.115.116 ip4:35.176.132.251 ip4:192.0.48.0/20 include:spf.protection.outlook.com include:spf.z168.zixworks.com include:_spf.salesforce.com include:aspmx.pardot.com include:spf1.satmetrix.com include:spf.smtp2go.com include:docebosaas.com include:mktomail.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:DMARCAlerts@Q2.com,mailto:reports@dmarc.cyber.dhs.gov; ruf=mailto:DMARCAlerts@Q2.com; fo=1; pct=100;
policy: quarantine
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC0/Pi7P8a666wvvYChMhVhu1p+Pe889+Jb5FzaWerhdyW6MNLthRxp6dxNf/RT1RzhKuOB3+Ke5D+T7p2qd1…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBxyyWYFxN1GHdLN3yhMxg0dGgKaDUzVXOgQol9LWyqyhOPeuGI9sE+eXECVaey8wlV2cZ6mvAwDvjo5mW…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlq2F/zOOIrwnP0tjcq/SVCDwflfzUvlaxSpSaExK0t9cqaEHXk1NxbF7O+eGdg3anRv/852MIwQxx4dXlx…
selectors probed

Certificate (current)

WE1
from 2026-04-11 to 2026-07-10
Expires in 52 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.q2.com/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(*), autoplay=(*), camera=(*), encrypted-media=(*), fullscreen=(*), geolocation=(*), gyroscope=(*), magnetometer=(*), microphone=(*), midi=(*), payment=(*), picture-in-picture=(*), sync-xhr=(*), usb=(*), clipboard-write=(*)
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' *.hubspot.com *.cookielaw.org *.cdntwrk.com *.wistia.com *.wistia.net *.q2.com *.sentry-cdn.com *.clarity.ms *.google.com *.googletagmanager.com *.googleapis.com *.googleadservices.com *.gstatic.com *.hsappstatic.com *.hsappstatic.net *.hubspot.net *.hs-banner.com *.hsadspixel.net *.hs-analytics.com *.hs-analytics.net *.licdn.com *.marketo.net *.marketo.com *.zoominfo.com *.bizible.com *.6sc.co *.qualified.com *.segment.com *.bugcrowd.com *.bugcrowdusercontent.com bugcrowd.com *.jsdeliver.net *.jsdelivr.net *.cloudflare.com *.doubleclick.net *.youtube.com *.hubspotusercontent-na1.net *.pathfactory.com *.zuddl.com 8ab0a26cb0027939bcf5-49c99c3c0c9c98b3365b710757036e1b.ssl.cf5.rackcdn.com *.crazyegg.com *.callrail.com *.linkedin.com *.facebook.net *.twitter.com; style-src 'self' *.q2.com 'report-sample' 'unsafe-inline' *.cdntwrk.com *.googleapis.com *.hsappstatic.net *.hubspot.net
strict-transport-security
max-age=31536000; includeSubDomains; preload
content-security-policy-report-only
default-src 'self'; script-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' *.hubspot.com *.cookielaw.org *.cdntwrk.com *.wistia.com *.wistia.net *.q2.com *.sentry-cdn.com *.clarity.ms *.google.com *.googletagmanager.com *.googleapis.com *.googleadservices.com *.gstatic.com *.hsappstatic.com *.hsappstatic.net *.hubspot.net *.hs-banner.com *.hsadspixel.net *.hs-analytics.com *.hs-analytics.net *.licdn.com *.marketo.net *.marketo.com *.zoominfo.com *.bizible.com *.6sc.co *.qualified.com *.segment.com *.bugcrowd.com *.bugcrowdusercontent.com bugcrowd.com *.jsdeliver.net *.jsdelivr.net *.cloudflare.com *.doubleclick.net *.youtube.com *.hubspotusercontent-na1.net *.pathfactory.com *.zuddl.com 8ab0a26cb0027939bcf5-49c99c3c0c9c98b3365b710757036e1b.ssl.cf5.rackcdn.com *.crazyegg.com *.callrail.com *.linkedin.com *.facebook.net *.twitter.com; style-src 'self' *.q2.com 'report-sample' 'unsafe-inline' *.cdntwrk.com *.googleapis.com *.hsappstatic.net *.hubspot.net

Links to (7)

Linked from (4)