indexo.dev

soundtrack.io

.io crawl

First seen 2026-04-14 · Last seen 2026-05-06 · ok HTTP/1.1 200 3078 ms crawled 2026-05-07

US · 34.134.152.206 · AS396982 Google LLC

Reputation 100/100

Classifying

HTML metadata

Language
en

Technology

CDN
Cloudflare
CMS
Next.js

DNS records live

NS
  • ns-cloud-a1.googledomains.com
  • ns-cloud-a2.googledomains.com
  • ns-cloud-a3.googledomains.com
  • ns-cloud-a4.googledomains.com
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 10 TXT records
  • _agd3g54k7262s8pvmyo2ajc2j3qgxcp
  • 2dqj8aloai2qj2cuuh8h59idrg
  • mixpanel-domain-verify=4758a545-44c6-4788-b6c6-79c744c6d79c
  • google-site-verification=GwH6_3ewphKztxfwjoR0kxlfoYh0WcQ7y2bcdsFP-80
  • jetbrains-domain-verification=153rmfzq7p7wvvxfcgztrgqid
  • apple-domain-verification=tUV3CQIQkc4KERoT
  • MS=ms95201565
  • Mosyle-verification=1762961207
  • google-site-verification=B3y-o-InVzaaMeAofo6b-B2eMQIKFCE_02OKw59pipM
  • 88be3485b906be8a834f18109f67d0d8

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:spf.mandrillapp.com include:spf.mail.intercom.io include:mail.zendesk.com include:139549812.spf06.hubspotemail.net ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; pct=100; rua=mailto:qac3or6d@rua.excedo.services;
policy: quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UwgnbG1YeX03AjfuDtA+lYb9eF4ylVoR01yxEeYkO3yHwpnvKamhZK4XjnaXbbUBueyhFTiAV9uqh…
selectors probed

Certificate (current)

R13
from 2026-03-10 to 2026-06-09
Expires in 20 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.soundtrack.io/

present
  • strict-transport-security
  • content-security-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src https: data: 'unsafe-inline' 'unsafe-eval' 'report-sample';img-src 'self' https: blob: data:;media-src 'self' https: blob: data:;connect-src wss: https:;object-src 'none';base-uri 'self';frame-ancestors 'self' https://soundtrack.io https://*.soundtrack.io https://soundtrackyourbrand.com https://*.soundtrackyourbrand.com https://*.soundcdn.com https://*.syb.sh https://*.soundtr.ac;report-uri https://o15889.ingest.us.sentry.io/api/4505663820857344/security/?sentry_key=c1cfffcf3b072f7c67557cad0dea30e9&sentry_environment=production
strict-transport-security
max-age=2592000; includeSubDomains

Linked from (1)