sightsciences.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-10 · ok HTTP/1.1 200 2410 ms crawled 2026-05-06

US · 141.193.213.10 · AS209242 Cloudflare London, LLC

Reputation 97/100 dmarc monitor-only

Classifying

HTML metadata

Title: Sight Sciences
Description: We aim to provide eyecare providers with transformative, clinically-proven therapies that are intuitive, less invasive, and more intelligent.
Language: en-US
Canonical: https://www.sightsciences.com/

Open Graph

url: https://www.sightsciences.com/
title: Home
locale: en_US
site name: Sight Sciences
description: We aim to provide eyecare providers with transformative, clinically-proven therapies that are intuitive, less invasive, and more intelligent.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Google Tag Manager

Cookie consent

OneTrust

Fonts

Google Fonts

Third-party hosts loaded (6)

fonts.googleapis.com×2
cdn.cookielaw.org×1
fonts.gstatic.com×1
maps.googleapis.com×1
www.google.com×1
www.googletagmanager.com×1

Registration

Registrar

GoDaddy.com, LLC

Created

2010-02-10

Expires

2026-09-09 113 days left

Updated

2024-09-09

Name servers

ns13.domaincontrol.com
ns14.domaincontrol.com

DNS records live

NS

ns13.domaincontrol.com
ns14.domaincontrol.com

MX

0 sightsciences-com.mail.protection.outlook.com

TXT

google-site-verification=fRc3rrItcw2chtKVBegUPEm8W41ich1V-UJMvVxaZeQ
teamviewer-sso-verification=baf97cbfa3664c85b881b520b05c79e7
docusign=4ffdd907-fdfc-4127-9413-aa456848bc9f

Email authentication strong

SPF

v=spf1 ip4:104.41.146.86 ip4:52.207.191.216 include:_spf.ultipro.com include:spf.protection.outlook.com include:auth.msgapp.com include:_spf.salesforce.com include:22688010.spf08.hubspotemail.net a:ns1.us31.siteground.us -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:Abuse@sightsciences.com; ruf=mailto:Abuse@sightsciences.com

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1bAKI2dmpr2b8OOunJp89uwM6fFZktRQ1zjqNftBQOJSWKwrABNjmGW+CsX3Hh7Jm54hzZCEsZjjulCOiZC…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-07-21 to 2026-08-19

Expires in 92 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.sightsciences.com//

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: sameorigin
permissions-policy: geolocation=self
x-content-type-options: nosniff
content-security-policy: default-src 'self'; img-src 'self' data: http: https: *.gravatar.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: googleapis.com gstatic.com *.google.com *.ggpht.com *.googleusercontent.com *.googletagmanager.com *.google-analytics.com *.gstatic.com; style-src 'self' 'unsafe-inline' blob: http: https: fonts.googleapis.com; font-src 'self' data: http: https: fonts.googleapis.com themes.googleusercontent.com; frame-src 'self' 'unsafe-inline' https: cdn.flipsnack.com *.google.com *.sightsciencessales.my.salesforce.com *.sightsciences.my.salesforce.com; connect-src 'self' *.cloudfront.net cdn.cookielaw.org *.onetrust.com *.clarity.ms analytics.tiktok.com ct.pinterest.com *.googleapis.com *.google-analytics.com *.google.com *.gstatic.com *.hotjar.com *.doubleclick.net insight.adsrvr.org data: blob:; worker-src 'self' blob:; frame-ancestors 'self' https://sightsciencessales.my.salesforce.com https://sightsciences.my.salesforce.com https://app.showpad.com https://sightsciences.show
strict-transport-security: max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: same-site