indexo.dev

soclly.com

.com crawl

First seen 2026-05-09 · Last seen 2026-05-09 · ok HTTP/1.1 200 2452 ms crawled 2026-05-15

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Soclly
Description
Soclly is a social aggregator platform.
Canonical
https://app.soclly.com

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Cloudflare Insights

Third-party hosts loaded (4)

  • gw.ipfs-lens.dev×2
  • ipfs.infura.io×2
  • cdnjs.cloudflare.com×1
  • static.cloudflareinsights.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2022-02-15
Expires
2028-02-15 635 days left
Updated
2025-07-19
Name servers
  • alaric.ns.cloudflare.com
  • haley.ns.cloudflare.com

DNS records live

NS
  • alaric.ns.cloudflare.com
  • haley.ns.cloudflare.com
MX
  • 10 mx.zoho.in
  • 20 mx2.zoho.in
  • 50 mx3.zoho.in
TXT
  • aad17a67-9c7f-4307-a7b3-698483dada7d=dcfbfa0d036ec77215d34d050a3b790555bc2c1bbe360f990b14ac7bf3b4ddc6

Email authentication strong

SPF
v=spf1 include:zoho.in include:zohomail.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:prayag@soclly.com; ruf=mailto:prayag@soclly.com; sp=quarantine; adkim=s; aspf=s
policy: quarantine · sp=quarantine
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-03-19 to 2026-06-17
Expires in 27 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.soclly.com/

present
  • strict-transport-security
  • content-security-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https: blob:; media-src 'self' https: blob:; font-src 'self' https: data:; connect-src 'self' https: wss: ws: blob:; frame-src 'self' https:; object-src 'none'; base-uri 'self'; form-action 'self'; upgrade-insecure-requests
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
unsafe-none

Linked from (1)