indexo.dev

resist.bot

.bot user

First seen 2026-05-18 · Last seen 2026-05-18 · ok HTTP/1.1 200 60 ms crawled 2026-06-02

US · 216.150.1.65 · AS16509 Amazon.com, Inc.

Reputation 92/100 weak subdomain policy

sector nonprofit type landing page

HTML metadata

Title
Resistbot — Write to Your Elected Officials in Minutes
Description
Write to your senators, representatives, and governor in minutes. Text RESIST to 50409 or chat on the web. Resistbot delivers your message via email, fax, or postal mail. 40 million letters sent.
Language
en
Canonical
https://resist.bot/
Feeds

Open Graph

url
https://resist.bot/
title
Resistbot — Write to Your Elected Officials in Minutes
site name
Resistbot
description
Write to your senators, representatives, and governor in minutes. Text RESIST to 50409 or chat on the web. Resistbot delivers your message via email, fax, or postal mail. 40 million letters sent.

Technology

CDN
Vercel
CMS
Next.js
JS framework
Next.js

Third-party hosts loaded (1)

  • cdn.sanity.io×4

Social

Registration

Registrar
EnCirca, Inc.
Created
2017-11-23
Expires
2026-11-23 166 days left
Updated
2025-10-26
Name servers
  • ns1.vercel-dns-2.com
  • ns2.vercel-dns-2.com

DNS records live

NS
  • ns1.vercel-dns-2.com
  • ns2.vercel-dns-2.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google
  • Meta
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:amazonses.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; sp=none; rua=mailto:re+ujpzwqw3y7l@inbound.dmarcdigests.com; pct=100
policy: quarantine · sp=none
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAow3nxca270Ura9/9+UezWS32Sm7uufJtFvG943+6ZCt9qo2uAH615HNvD+vApfYCj/vyzGPVzm8qA/…
selectors probed

Certificate (current)

R12
from 2026-04-22 to 2026-07-21
Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://resist.bot/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'none'; child-src 'self' blob:; font-src 'self' data:; frame-ancestors 'none'; object-src 'none'; worker-src 'self' blob:; img-src 'self' blob: data: https://cdn.sanity.io https://d2trsyva2ogxqz.cloudfront.net; script-src 'self' 'unsafe-inline' https://*.posthog.com https://*.js.stripe.com https://js.stripe.com https://maps.googleapis.com https://platform.twitter.com https://sentry.io https://*.sentry.io https://o70939.ingest.sentry.io; style-src 'self' 'unsafe-inline'; connect-src 'self' https://*.posthog.com https://api.stripe.com https://maps.googleapis.com https://api.mapbox.com https://events.mapbox.com https://platform.twitter.com https://sentry.io https://*.sentry.io https://o70939.ingest.sentry.io https://resistbot.report-uri.com https://cdn.sanity.io https://fj76bufg96.execute-api.us-west-2.amazonaws.com https://8qidifgfmb.execute-api.us-west-2.amazonaws.com wss://6w2xcfnz5vh5bckdkcmw6o4d6y.appsync-realtime-api.us-west-2.amazonaws.com https://a.res
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (39)

Use this data via API

Everything on this page for resist.bot is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/resist.bot" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →