indexo.dev

shipco.com

.com crawl

First seen 2026-06-03 · Last seen 2026-06-03 · ok HTTP/1.1 200 1440 ms crawled 2026-06-03

US · 54.205.220.65 · AS14618 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Shipco
Language
en
Canonical
https://www.shipco.com

Technology

Server
Apache
Cookie consent
  • OneTrust
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • cdn.cookielaw.org×1
  • cdnjs.cloudflare.com×1
  • fonts.gstatic.com×1

Registration

Registrar
Network Solutions, LLC
Created
1998-02-18
Expires
2027-02-17 258 days left
Updated
2025-12-20
Name servers
  • ns-1299.awsdns-34.org
  • ns-1598.awsdns-07.co.uk
  • ns-481.awsdns-60.com
  • ns-881.awsdns-46.net

DNS records live

NS
  • ns-1299.awsdns-34.org
  • ns-1598.awsdns-07.co.uk
  • ns-481.awsdns-60.com
  • ns-881.awsdns-46.net
MX
  • 10 mxa-0026f801.gslb.pphosted.com
  • 10 mxb-0026f801.gslb.pphosted.com
TXT
  • pax8validate
Verified for
  • Anthropic
  • Apple
  • Atlassian
  • Google
  • Microsoft 365
  • OpenAI

Email authentication partial

SPF
v=spf1 include:spf.shipco.com -all
strict (-all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc@shipco.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com,mailto:dmarc@shipco.com;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbyUZl7E8N0uSkJnndmhUCi0wZlT4duuQJpjg5SA2L1X2d9DqUvKUbCDu0OGmT6sCP1i46muqo8SRjlOOc…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8hDkmPIXyJlvsPl6qEou2AxnDH6EBAugX02faWki4CQVm12fdLtex6bVVhzedXeNcvxQr5zfAjeiCwE9y…
selectors probed

Certificate (current)

Thawte TLS RSA CA G1
from 2025-06-03 to 2026-06-11
Expires in 7 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.shipco.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
sameorigin, SAMEORIGIN
permissions-policy
geolocation=(),midi=(),notifications=(),push=(),sync-xhr=(),accelerometer=(),gyroscope=(),magnetometer=(),payment=(),camera=(),microphone=(),usb=(),xr=(),speaker=(self),vibrate=(),fullscreen=(self),
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' *.google.com *.shipco.com *.shipcocn.com *.google-analytics.com *.onetrust.com *.cookielaw.org *.amazonaws.com *.hydelogistics.com *.scan-shipping.com *.phxcloud.io *.straitair.com *.wwalliance.com; script-src 'self' *.onetrust.com *.cookielaw.org *.googletagmanager.com unpkg.com *.amazonaws.com *.scan-shipping.com *.straitair.com *.globeassist.shipco.com *.shipco.com *.shipcocn.com *.cookielaw.org *.google-analytics.com *.jsdelivr.net *.datatables.net https://www.googletagmanager.com https://maxcdn.bootstrapcdn.com *.jquery.com *.cloudfront.net *.googleapis.com *.cloudflare.com *.mxpnl.com *.github.io *.google.com *.gstatic.com *.mtcaptcha.com *.vimeocdn.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' *.onetrust.com *.cookielaw.org https://unpkg.com https://maxcdn.bootstrapcdn.com *.amazonaws.com *.globeassist.shipco.com *.shipco.com *.shipcocn.com *.datatables.net *.googleapis.com *.cloudflare.com *.fontawesome.com *.cloudfront.net *.googletagmanager.com *.jq
strict-transport-security
max-age=31536000; includeSubDomains; preload

Linked from (1)