shopkoopman.com

.com crawl

First seen 2026-04-24 · Last seen 2026-05-15 · ok HTTP/1.1 200 19409 ms crawled 2026-05-18

US · 146.148.45.127 · AS396982 Google LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Koopman Lumber
Description: Koopman Lumber Co has some of the best selections of lawn care products & many more. Our friendly website is here to assist you with all of your purchasing needs. Feel free to contact us if you hav...
Language: en
Canonical: https://shopkoopman.com/

Open Graph

url: https://shopkoopman.com/
title: Koopman Lumber Locations
site name: Koopman Lumber
description: Koopman Lumber Co has some of the best selections of lawn care products & many more. Our friendly website is here to assist you with all of your purchasing needs. Feel free to contact us if you hav...

Technology

Analytics

Google Tag Manager

Third-party hosts loaded (8)

static.ezadlive.com×25
storage.googleapis.com×8
images.ezad.io×5
api.ezadlive.com×1
maps.googleapis.com×1
translate.google.com×1
translate.googleapis.com×1
www.googletagmanager.com×1

Contact

Address: 1050 General Edwards HWY, 2067, Sharon, MA, US

Registration

Registrar

Network Solutions, LLC

Created

2019-03-11

Expires

2027-03-11 295 days left

Updated

2026-01-28

Name servers

ns1.dnsbycomodo.net
ns2.dnsbycomodo.net

DNS records live

NS

ns1.dnsbycomodo.net
ns2.dnsbycomodo.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=v2IPXz2rp_IR8O3NQGFJWi8Nf-YAD3xD7o-2FJsTcQA

Email authentication weak

SPF: v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-03-30 to 2026-06-28

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://shopkoopman.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; connect-src 'self' *.ezadtv.com *.ezadlive.com *.stripe.com *.googleapis.com *.paypal.com *.google-analytics.com *.sentry.io *.facebook.com google.com *.google.com *.youtube.com http://localhost:3010; font-src * data:; img-src * data:; frame-src 'self' *.stripe.com www.googletagmanager.com *.paypal.com td.doubleclick.net platform.liquidus.net ezadtv.com *.google.com *.youtube.com *.youtube-nocookie.com *.jotform.com player.vimeo.com media.benjaminmoore.com *.authorize.net *.bamboohr.com *.calendly.com *.typeform.com *.vimeo.com; script-src 'self' blob: 'unsafe-inline' www.web2dm.com www.googletagmanager.com *.google-analytics.com connect.facebook.net js.stripe.com platform.liquidus.net static.hotjar.com static.ezadlive.com *.googleapis.com *.paypal.com *.sentry.io googleads.g.doubleclick.net *.google.com *.gstatic.com *.googleadservices.com; style-src 'self' static.ezadlive.com 'unsafe-inline' fonts.googleapis.com; media-src * data:; frame-ancestors 'self'; report-u
strict-transport-security: max-age=31536000

Links to (1)

koopmanlumber.com×2

Linked from (1)

koopmanlumber.com×2