spin.ai
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- nginx
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Ads
-
- Google Ads (DoubleClick)
Third-party hosts loaded (9)
- app.storylane.io×2
- www.googletagmanager.com×2
- cdn-cookieyes.com×1
- gmpg.org×1
- googleads.g.doubleclick.net×1
- js.hs-analytics.net×1
- js.hs-banner.com×1
- js.hs-scripts.com×1
- js.storylane.io×1
Social
Contact
- Phone
Registration
- Registrar
- 101domain GRS Limited
- Created
- 2018-09-21
- Expires
- 2026-09-21 125 days left
- Updated
- 2024-07-24
- Name servers
-
- ns-1679.awsdns-17.co.uk
- ns-469.awsdns-58.com
- ns-1067.awsdns-05.org
- ns-698.awsdns-23.net
DNS records live
- NS
-
- ns-1067.awsdns-05.org
- ns-1679.awsdns-17.co.uk
- ns-469.awsdns-58.com
- ns-698.awsdns-23.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 10 TXT records
MS=ms25101636MS=ms81795370anthropic-domain-verification-cw7pj4=uIAv7q99CcxC40AjxAfHv3p8yatlassian-domain-verification=+2NOyXaAh4ysprnpDCNOqp4NjJF7ZqpP6isEscLkFk/vnEzAPbIedMaXTWR2ZiJ8google-site-verification=DT48xVnCmR2DPi1Euuc-_R48IqmYjNUrJEQAzvjaRn4google-site-verification=QbHXlw_8NSss26m0ZckWby87XUBDXPZ__dC1QwVfZuYgoogle-site-verification=YlcCauvOc22WlOj78SiPkAiELzUi_w8Qb1Gg8v9qfO0google-site-verification=k3RhaEEvp5obFS8RT-qTnhBuA7sPehEElV3mVk1SRzkgoogle-site-verification=uzluF4F_T7-BIKlZBwekz6cuPlOSuLHBLjUySd33VbQknowbe4-site-verification=339c7be38490893921af67c4f2bc25a3
Email authentication strong
- SPF
-
v=spf1 ip4:178.63.169.69 include:_spf.google.com include:_spf.psm.knowbe4.com include:_spf.salesforce.com include:8602947.spf05.hubspotemail.net include:_spf.atlassian.net ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:infosec@spin.ai; pct=100; adkim=s; aspf=rpolicy: reject (enforced) - DKIM
-
Show 4 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuhXcd/tafTkJxsgmhFgd/G4PliWX3O6RqqCQRFxo6YsWxKuM0+ln8uiKqwtn/0chvJjDXKckQS+GU… - mail:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8iVm22giNEUX3T5R59exhTu3xthsO/WKtYlgv1c8hSdVKObdDi+TGERQE2Ym/41VVT+BAALshHtZXhUvoem… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1gU64wM331J2x42nJ5l0VWV9mz2yyXOQwlgqvQ5eOkANWTV43m7GSCUU9MBBKHDpm6+8o9nY+5vm506tZ… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8tvSmzHnj/KkHIVAuonmai05ZFiat3Js8GETYTxg0Pfb3773i53A56TIx89vrodwSgVPFTQFqQ1Tg/KOpQM6YlC…
selectors probed - google:
Certificate (current)
Amazon RSA 2048 M04
Expires in 136 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: https://b.sf-syn.com https://cdn.trakkr.ai https://*.6sc.co https://*.semrush.com https://*.hsappstatic.net https://866b018c.delivery.rocketcdn.me https://www.redditstatic.com https://s3-us-west-2.amazonaws.com https://tag.trovo-tag.com https://cdn.cr-relay.com https://js.storylane.io https://www.geoplugin.net https://trinitymedia.ai https://assets.apollo.io https://*.visualwebsiteoptimizer.com https://js.zi-scripts.com https://www.youtube.com https://cdn.jsdelivr.net https://tracking.g2crowd.com https://cdn-cookieyes.com https://unpkg.com https://*.hsforms.net https://*.hsforms.com https://*.hscollectedforms.net https://*.hs-banner.com https://*.hs-analytics.net https://*.hs-scripts.com https://*.hsadspixel.net https://pageimprove.io https://js.partnerstack.com https://*.clarity.ms https://*.googleapis.com https://snap.licdn.com https://cdnjs.cloudflare.com https://*.doubleclick.net https://*.googleadservices.com https://www.- strict-transport-security
max-age=63072000; includeSubDomains; preload