indexo.dev

step2.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1966 ms crawled 2026-05-18

CA · 23.227.38.65 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Kids Toys, Playhouses, Wagons & Outdoor Products | Step2
Description
Step2 manufactures & sells indoor and outdoor kid's toys, play kitchens, playhouses, wagons, swing sets, home & garden products, & more!
Language
en-US
Canonical
https://www.step2.com/

Open Graph

url
https://www.step2.com/
title
Kids Toys, Playhouses, Wagons & Outdoor Products | Step2
site name
Step2
description
Step2 manufactures & sells indoor and outdoor kid's toys, play kitchens, playhouses, wagons, swing sets, home & garden products, & more!

Technology

CDN
Cloudflare
CMS
Shopify
Third-party hosts loaded (11)
  • cdn.shopify.com×5
  • fonts.cdnfonts.com×2
  • shop.app×2
  • a.klaviyo.com×1
  • cdn-widgetsrepository.yotpo.com×1
  • cdn-zeptoapps.com×1
  • dev.visualwebsiteoptimizer.com×1
  • fonts.shopifycdn.com×1
  • limits.minmaxify.com×1
  • monorail-edge.shopifysvc.com×1
  • static.klaviyo.com×1

Social

Registration

Registrar
Register.com - Network Solutions, LLC
Created
1999-11-13
Expires
2028-11-13 907 days left
Updated
2019-11-14
Name servers
  • auth5.dns.expedient.com
  • auth6.dns.expedient.com

DNS records live

NS
  • auth1.dns.expedient.com
  • auth2.dns.expedient.com
  • auth3.dns.expedient.com
TXT
Show 4 TXT records
  • v=DMARC1; p=none;
  • 76491dj1v18iq5ea8t6quich4i
  • @klaviyo-site-verification=VKHTQM
  • 4ogcgdlisvsg635v60bu070uri

Email authentication no MX

SPF
not published
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVGJ3xZOJgTF4ZopSOU2pN/OdKvR1cOfUIQZuzeX/+oHiHc5QTfmzMWwQY83Zfjrut6SbBv3KDAFCAPkZr…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDWDtqzVo4kRIJgxQQmuhUJJOL41KV+eBDzLe9mCRN6Xsupc0FMIsWQA3Pz/8oTkrDpT0nXSn+K41p4blTWyufWKN…
selectors probed

Certificate (current)

E8
from 2026-04-19 to 2026-07-18
Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.step2.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security
max-age=7889238

Links to (6)

Linked from (1)