indexo.dev

rainbow-wool.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-16 · ok HTTP/1.1 200 2203 ms crawled 2026-05-13

DE · 62.113.231.135 · AS47447 23M GmbH

Reputation 92/100 no dmarc policy

sector fashion type homepage

HTML metadata

Title
Rainbow Wool
Description
Rainbow Wool is the first fashion made from the wool of gay sheep to support queer projects across the globe. #🌈🐏
Language
en-US
Canonical
https://rainbow-wool.com/
Translations
  • de
  • en
  • en-us

Open Graph

url
https://rainbow-wool.com/
title
Rainbow Wool
site name
Rainbow Wool Shop
description
Rainbow Wool is the first fashion made from the wool of gay sheep to support queer projects across the globe. #🌈🐏

Technology

Server
Apache
Social widgets
  • YouTube Embed

Third-party hosts loaded (1)

  • www.youtube-nocookie.com×1

Social

Registration

Registrar
Tucows Domains Inc.
Created
2025-11-04
Expires
2026-11-04 169 days left
Updated
2025-11-04
Name servers
  • nameserver-1-de.maxcluster.net
  • nameserver-2-de.maxcluster.net

DNS records live

NS
  • nameserver-1-de.maxcluster.net
  • nameserver-2-de.maxcluster.net
MX
  • 10 mail-de.maxcluster.net
TXT
  • maxcluster-domain-verification=rfyfiucmeqtmlp1ias9ujatopunveljp

Email authentication weak

SPF
v=spf1 a mx ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-05-04 to 2026-08-02
Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://rainbow-wool.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
deny
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'none'; frame-src 'self' https://www.googletagmanager.com/ https://*.stripe.com/ https://player.vimeo.com/ https://www.youtube-nocookie.com/; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://connect.facebook.net/ https://www.facebook.com/ https://www.googletagmanager.com/ https://*.stripe.com/; img-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.facebook.com/ data: w3.org/svg/2000;
strict-transport-security
max-age=31536000; includeSubDomains

Links to (20)

Linked from (3)