indexo.dev

recroo.com

.com crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 1003 ms crawled 2026-05-31

IT · 86.107.32.161 · AS52030 Server Plan S.r.l.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Recroo – Piattaforma di Recruiting On-Demand
Description
Recroo è la piattaforma di recruiting on-demand che ti dà accesso a profili qualificati, motivati e in linea con le tue ricerche.
Language
it-IT
Canonical
https://recroo.com/

Open Graph

url
https://recroo.com/
title
Recroo – Piattaforma di Recruiting On-Demand
site name
Recroo
description
Recroo è la piattaforma di recruiting on-demand che ti dà accesso a profili qualificati, motivati e in linea con le tue ricerche.

Technology

Server
Apache
CMS
WordPress
jQuery
3.7.1
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Contact

Email
Phone

Registration

Registrar
Register SPA
Created
2020-06-12
Expires
2026-06-12 11 days left
Updated
2023-02-28
Name servers
  • ns1.register.it
  • ns2.register.it

DNS records live

NS
  • ns1.register.it
  • ns2.register.it
MX
  • 0 recroo.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 +a +mx +ip4:86.107.32.161/24 include:spf.webapps.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwynOasQxs1njGRzHmpexF5r3gkd5wgdv/9ohZC3nK1Qc1w9SMPD5BTLigoaFP6oHH8H+mEPUv1f0kx…
selectors probed

Certificate (current)

R12
from 2026-05-16 to 2026-08-14
Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://recroo.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' https://consentcdn.cookiebot.com/ https://consent.cookiebot.com/ https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://maps.googleapis.com https://www.googletagmanager.com https://www.gstatic.com https://player.vimeo.com/api/ https://snap.licdn.com https://connect.facebook.net https://static.hotjar.com/ https://script.hotjar.com 'self'; style-src 'unsafe-inline' https://fonts.googleapis.com https://www.googletagmanager.com 'self'; worker-src 'self' 'unsafe-eval'; img-src https://maps.gstatic.com/ https://maps.googleapis.com/ https://www.google-analytics.com https://www.google.it/ 'unsafe-inline' 'self' data: https: ; object-src 'none'; base-uri 'self'; connect-src https://consentcdn.cookiebot.com https://region1.google-analytics.com https://maps.googleapis.com https://app.recroo.com https://cdn.linkedin.oribi.io https://region1.analytics.google.com/ https://stats.g.doubleclick.net/ http
strict-transport-security
max-age=31588000; includeSubDomains

Links to (1)

Linked from (1)