spikko.com

.com crawl

First seen 2026-04-26 · Last seen 2026-05-19 · ok HTTP/1.1 200 1139 ms crawled 2026-05-19

IE · 20.50.64.15 · AS8075 Microsoft Corporation

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title: Login
Description: Login to your account

Technology

Third-party hosts loaded (1)

www.google.com×1

Registration

Registrar

Wild West Domains, LLC

Created

2006-08-30

Expires

2026-08-30 101 days left

Updated

2025-08-31

Name servers

bob.ns.cloudflare.com
miki.ns.cloudflare.com

DNS records live

NS

bob.ns.cloudflare.com
miki.ns.cloudflare.com

MX

0 spikko-com.mail.protection.outlook.com

TXT

6iqsvtqqa4ain1j2ssbe0ofhoj
D63498090DF03FAEA8F409F4B7E5F8A274982492CB142C250EF6E56DAF9DCE4A
fq2a4tal6ggaiofu30rbdnltej

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com ip4:40.115.127.73 -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

Show 12 DKIM selectors

default: v=DKIM1; p=
google: v=DKIM1; p=
selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/BruCfyvCA86mawEgw1Px7OW8Z63a5cDyjtJ+hTCkJYGbxpfhRMV2DrhUrdFz/3Wgb/EIiiDdJIX2dTv2su…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxinWGbc8g69+Z8XB6uymJeSOZyGah0yh5YWO0T1NFjn0MpBf9aRXm2BYXW3Svr/WCmNK4Dt3+pJ76…
k1: v=DKIM1; p=
k2: v=DKIM1; p=
mail: v=DKIM1; p=
dkim: v=DKIM1; p=
s1: v=DKIM1; p=
s2: v=DKIM1; p=
mxvault: v=DKIM1; p=
smtpapi: v=DKIM1; p=

selectors probed

Certificate (current) wrong cert

Microsoft TLS G2 RSA CA OCSP 02

from 2026-05-08 to 2026-11-04

Expires in 168 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://secure.spikko.com/account/Login.aspx?For=Global

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
content-security-policy: frame-src 'self' mobile2crm.com *.mobile2crm.com *.azurewebsites.net *.spikko.com *.spikko.com:444 *.google.com *.g.doubleclick.net *.doubleclick.net *.facebook.net *.facebook.com *.creditguard.co.il *.invoice4u.co.il *.youtube.com *.salesforce.com *.hubspot.com; frame-ancestors 'self' mobile2crm.com *.mobile2crm.com *.azurewebsites.net *.spikko.com *.spikko.com:444 *.creditguard.co.il *.invoice4u.co.il *.salesforce.com *.hubspot.com *.google.com; report-uri /api/Media/Report; report-to report-group
strict-transport-security: max-age=31536000

Linked from (1)

didww.com×2