indexo.dev

shown.io

.io crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 640 ms crawled 2026-06-01

US · 52.186.64.46 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
AI-Powered Ad Campaign Optimization - Shown.io
Description
Boost your ROI with Shown.io's AI-driven ad optimization platform. Create, manage, and scale online ads efficiently
Language
en
Canonical
https://shown.io/index%2ephp/en
Translations
  • ar
  • de
  • en
  • es
  • fr
  • id
  • it
  • nl
  • pt
  • ru
  • tr

Open Graph

url
https://shown.io
title
Shown.io – AI-Powered Ad Optimization
site name
Shown
description
Efficiently optimize your ad campaigns with AI.

Technology

Server
Apache
CMS
Gatsby
jQuery
3.7.1
Analytics
  • Google Tag Manager

Third-party hosts loaded (5)

  • cdnjs.cloudflare.com×3
  • unpkg.com×2
  • www.googletagmanager.com×2
  • static.zdassets.com×1
  • www.facebook.com×1

Social

DNS records live

NS
  • ns1.digitalocean.com
  • ns2.digitalocean.com
  • ns3.digitalocean.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • hello-osborneclarke
Verified for
  • Google
  • Postman
  • Stripe

Email authentication partial

SPF
v=spf1 include:_spf.google.com include:sendgrid.net include:7024061.spf05.hubspotemail.net include:servers.mcsv.net include:mail.zendesk.com ?all
neutral (?all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
Show 4 DKIM selectors
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCLDKxSZp9kSehVF2jtvG9WyBa0dYs8HZLTEqRYqJTf55pAFZM05pjRgkdG10xhRkTWR2BALNB0nW+…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhWQLoeJiQYblNvV7TeBivm51uNkreGOBxLlStTZWvG0etYKGJHeH+w06kN/1K5p7C1ZInjoi4mj742GLv…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDB4qxjZLMgL2yWZsX6l3Hu6Q9HIXOebrSqk5RB3ERxb9awynCqbrjf0m5O4vxmntFb3NDo6YxozHXHXNlFXzXbJx…
selectors probed

Certificate (current)

R13
from 2026-04-16 to 2026-07-15
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://shown.io/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri 'self';connect-src 'self' ekr.zdassets.com *.google.com shown.zendesk.com;default-src 'self' static.zdassets.com;form-action 'self';img-src 'self' bat.bing.com www.googletagmanager.com app.shown.io *.facebook.com;media-src 'self';object-src 'none';script-src 'self' cdnjs.cloudflare.com unpkg.com cmp.quantcast.com edge.quantserve.com secure.quantserve.com rules.quantcount.com static.zdassets.com ekr.zdassets.com www.googletagmanager.com maxcdn.bootstrapcdn.com connect.facebook.com connect.facebook.net bat.bing.com *.typeform.com;style-src 'self' static.zdassets.com cdnjs.cloudflare.com unpkg.com gitcdn.github.io use.fontawesome.com fonts.googleapis.com embed.typeform.com 'unsafe-inline';font-src cdnjs.cloudflare.com fonts.googleapis.com fonts.gstatic.com use.fontawesome.com 'self';frame-src *.youtube.com www.googletagmanager.com form.typeform.com
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (5)

Linked from (1)