indexo.dev

shoei-helmets.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-17 · ok HTTP/1.1 200 2902 ms crawled 2026-05-15

US · 62.151.178.178 · AS8560 IONOS SE

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Official Site - SHOEI® Helmets USA
Description
SHOEI helmets are premium quality handmade in our factories in Japan, using the latest technology and advanced materials to create our world-class helmet line. Every SHOEI helmet uses a sophisticated process involving over 50 people.
Language
en

Technology

Server
Apache
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Social widgets
  • YouTube Embed
Third-party hosts loaded (9)
  • d5wij71cdd958.cloudfront.net×53
  • cdn.jsdelivr.net×1
  • code.jquery.com×1
  • fonts.googleapis.com×1
  • kit.fontawesome.com×1
  • stackpath.bootstrapcdn.com×1
  • www.google.com×1
  • www.googletagmanager.com×1
  • www.youtube-nocookie.com×1

Social

Contact

Email
Phone

Registration

Registrar
Advanced Internet Technologies, Inc. (AIT)
Created
1998-02-14
Expires
2030-02-13 1366 days left
Updated
2025-02-05
Name servers
  • jasmine.ns.cloudflare.com
  • yahir.ns.cloudflare.com

DNS records live

NS
  • jasmine.ns.cloudflare.com
  • yahir.ns.cloudflare.com
MX
  • 0 mailstore1.secureserver.net
  • 1 smtp.secureserver.net

Email authentication weak

SPF
v=spf1 mx include:cmail1.com ~all
softfail (~all)
DMARC
not published
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIKfUsLCp+m/VglLgleGvmk60IRfXQX9NSMHsvXDjaXQzUi2ntSHtS16msReX8rHPSnyKJWN1SsN2KZbuG…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAph0BEIln4cobub+UKWmH2ZUpPd6lO/6sG7HnUG3uE/ON1dbM2J9SegGgTgI5WW6jwe2+PTr8MttbXVfjp5…
selectors probed

Certificate (current)

E7
from 2026-04-01 to 2026-06-30
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://shoei-helmets.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(),autoplay=(),camera=(),encrypted-media=(),fullscreen=*,geolocation=*,gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),sync-xhr=*,usb=(),xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
form-action 'self'; frame-ancestors 'none'; upgrade-insecure-requests; default-src https://api.fiveoak.com 'self'; script-src 'report-sample' 'nonce-YWdhTFI3LUVPX3RnTDJmd3NQT1Atd0FBQVpZ' 'unsafe-inline' 'strict-dynamic' 'unsafe-eval'; style-src 'report-sample' 'self' 'unsafe-inline' https://ajax.googleapis.com https://fonts.googleapis.com https://cdn.curator.io https://static.ctctcdn.com https://cdn.jsdelivr.net https://app.helmethousechat.com https://d1o0i0v5q5lp8h.cloudfront.net https://use.fontawesome.com; object-src 'none'; base-uri 'self'; connect-src 'self' https://listgrowth.ctctcdn.com https://stats.g.doubleclick.net https://api.curator.io https://helmethouse.attn.tv https://events.attentivemobile.com https://maps.googleapis.com https://www.googletagmanager.com https://analytics.google.com https://visitor2.constantcontact.com https://google.com https://digitalthrottle.ss-gtm.com *.googlesyndication.com https://www.google.com https://www.googleadservices.com https://backend.helm
strict-transport-security
max-age=63072000; includeSubDomains; preload
cross-origin-resource-policy
same-site

Links to (6)

Linked from (2)