indexo.dev

rushbet.co

.co crawl

First seen 2026-04-20 · Last seen 2026-05-13 · ok HTTP/1.1 200 2754 ms crawled 2026-05-13

US · 104.18.79.225 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Apuestas Deportivas | Casa de Apuestas En Línea | Rushbet
Description
Apuesta y Gana Dinero en Línea con tus Deportes favoritos, Fútbol, Tenis, Baloncesto, Beísbol, Fútbol Americano y más.
Language
en
Canonical
https://www.rushbet.co/?page=sportsbook

Open Graph

url
https://www.rushbet.co/?page=sportsbook
title
Apuestas Deportivas | Casa de Apuestas En Línea | Rushbet
description
Apuesta y Gana Dinero en Línea con tus Deportes favoritos, Fútbol, Tenis, Baloncesto, Beísbol, Fútbol Americano y más.

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Cloudflare Insights
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • micro-frontends.rushstreetcontent.com×39
  • client-assets.rushstreetcontent.com×9
  • www.googletagmanager.com×4
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • static.cloudflareinsights.com×1
  • www.datadoghq-browser-agent.com×1
  • www.facebook.com×1

Social

DNS records live

NS
  • erin.ns.cloudflare.com
  • ernest.ns.cloudflare.com
MX
  • 1 rushbet-co.mail.protection.outlook.com
TXT
  • google-site-verification=mJ17CN-ZtZKJPz3ZMgNs-SjgoVnjUA_2quKD25K4ycc
  • yt834mt4jtlmhyvpjgm6l6kbl32g1hvg
  • MS=ms27028859

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com ip4:208.85.48.196 ip4:74.112.65.118 ip4:74.112.64.38 ip4:208.85.54.226 -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuI97ecPc/gklE4CMPLKifI9xZcnLBxE5JwC92cJgZkYWLquE3J1cSsBeV5gSWh73Hitk8K8ssY4S/ZZz5I…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Ox1ECMjU7CTO29o5o0fziJXHS/VwCxgTvRtwIU36IWpqG97J4EILiWwj6aS4DsYqtv0VCWfTuR49zdNzU…
selectors probed

Certificate (current)

WE1
from 2026-05-09 to 2026-08-07
Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.rushbet.co/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
default-src * 'unsafe-eval' 'unsafe-inline' blob: data:; script-src 'self' 'unsafe-eval' 'report-sample' blob: https://*.betgenius.com/ https://*.force.com/ https://*.geniussports.com/ https://*.kambicdn.com/ https://*.online-metrix.net/ https://*.paypal.com/ https://*.salesforce.com/ https://*.salesforceliveagent.com/ https://rushstreetinteractive.my.site.com/ https://*.webpu.sh/ https://apis.google.com/ https://c.paypal.com/ https://cdn-gl.imrworldwide.com/ https://cdn.geocomply.com/ https://cdn.xpoint.tech/ https://cdn.jsdelivr.net/ https://challenges.cloudflare.com/turnstile/ https://connect.facebook.net/ https://h.online-metrix.net/ https://js.braintreegateway.com/ https://maps.googleapis.com/ https://micro-frontends.rushstreetcontent.com/ https://paywithmybank.com/ https://platform.twitter.com/ https://player.performgroup.com/ https://request.eprotect.vantivcnp.com/ https://service.riverscontent.com/ https://static.ads-twitter.com/ https://static.cloudflareinsights.com/ https://s
strict-transport-security
max-age=15780000; includeSubDomains

Links to (10)

Linked from (3)