indexo.dev

steamcommunity.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 428 ms crawled 2026-05-18

DE · 23.197.130.99 · AS16625 Akamai Technologies, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Steam Community
Description
Community Hubs are collections of all the best community and official game content as rated by users.
Language
en

Open Graph

title
Steam Community
description
Community Hubs are collections of all the best community and official game content as rated by users.
image:secure
https://community.fastly.steamstatic.com/public/shared/images/responsive/steam_share_image.jpg

Technology

Server
nginx

Third-party hosts loaded (2)

  • community.fastly.steamstatic.com×48
  • cdn.fastly.steamstatic.com×4

Registration

Registrar
MarkMonitor Inc.
Created
2006-05-28
Expires
2027-05-28 373 days left
Updated
2024-09-05
Name servers
  • a1-164.akam.net
  • a11-67.akam.net
  • a24-64.akam.net
  • a26-65.akam.net
  • a8-66.akam.net
  • a9-67.akam.net

DNS records live

NS
  • a1-194.akam.net
  • a2-64.akam.net
  • a22-67.akam.net
  • a24-64.akam.net
  • a7-66.akam.net
  • a9-66.akam.net
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
TXT
  • google-site-verification=vsUrXpDBPSpF6cqB24j-eo8q-GgNzs7MbSUP-6Ch8kc

Email authentication strong

SPF
v=spf1 mx include:_netblocks.mimecast.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:e8b9a9244a5c591@rep.dmarcanalyzer.com; ruf=mailto:e8b9a9244a5c591@for.dmarcanalyzer.com; pct=100; sp=reject; adkim=s; aspf=s; fo=1;
policy: reject (enforced) · sp=reject
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1
from 2025-09-05 to 2026-09-05
Expires in 108 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://steamcommunity.com/

present
  • content-security-policy
  • x-frame-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
default-src blob: data: https: 'unsafe-inline' 'unsafe-eval'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://community.fastly.steamstatic.com/ https://cdn.fastly.steamstatic.com/steamcommunity/public/assets/ https://api.steampowered.com/ https://recaptcha.net https://www.google.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.youtube.com/ https://s.ytimg.com; object-src 'none'; connect-src 'self' https://community.fastly.steamstatic.com/ https://store.steampowered.com/ https://checkout.steampowered.com/ wss://community.steam-api.com/websocket/ https://api.steampowered.com/ https://login.steampowered.com/ https://help.steampowered.com/ https://steam.tv/ https://steamcommunity.com/ https://*.valvesoftware.com https://*.steambeta.net https://*.discovery.beta.steamserver.net https://*.steamcontent.com https://steambroadcast.akamaized.net https://steambroadcast-test.akamaized.net https://broadcast.st.dl.eccdnx.com https://lv.queniujq.c

Links to (2)

Linked from (50)