indexo.dev

shopapus.com

.com crawl

First seen 2026-05-13 · Last seen 2026-05-19 · ok HTTP/1.1 200 4483 ms crawled 2026-05-19

US · 15.197.225.128 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Campus Store
Language
en

Open Graph

url
https://www.shopapus.com

Technology

Server
nginx
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • files.availerp.com×5
  • cdnjs.cloudflare.com×1
  • www.googletagmanager.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2014-02-20
Expires
2027-01-07 232 days left
Updated
2026-01-08
Name servers
  • ns13.domaincontrol.com
  • ns14.domaincontrol.com

DNS records live

NS
  • ns13.domaincontrol.com
  • ns14.domaincontrol.com
TXT
  • p9h6sr4t7e1jhij2i1ta1t7j3e

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

GoDaddy TLS Intermediate CA DV - R1v1
from 2026-03-14 to 2026-09-28
Expires in 131 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.shopapus.com/

present
  • content-security-policy
  • x-frame-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
default-src 'self' *.availerp.com;connect-src * data:;font-src 'self' data: fonts.gstatic.com use.typekit.net files.brandrpm.com files.availerp.com;img-src 'self' * blob: data:;frame-src 'self' *.availerp.com *.google.com js.stripe.com hooks.stripe.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: 'nonce-OmDDsiU7VEph25kVtYytiKRXB4AyQa0p';style-src 'self' *.availerp.com 'unsafe-inline' fonts.googleapis.com *.google.com *.gstatic.com cdnjs.cloudflare.com *.typekit.net;object-src 'self' *.availerp.com;base-uri 'self'

Linked from (1)