indexo.dev

superbalais.com

.com ok HTTP/1.1 200 1004 ms

First seen 2026-06-11 · Last seen 2026-06-11 · crawled 2026-06-11

US · 198.185.159.145 · AS53831 Squarespace, Inc.

Reputation 67/100 wrong cert no dmarc policy

Classifying

HTML metadata

Title
ELLA & PITR BOUTIQUE! — Home
Description
Ella & Pitr online shop. Books, screen prints, tshirts and more from the artists. Feel free to ask any question : superbalais@gmail.com
Generator
Big Cartel
Canonical
https://www.superbalais.com/
Feeds

Open Graph

url
https://www.superbalais.com/
title
ELLA & PITR BOUTIQUE!
site name
ELLA & PITR BOUTIQUE!
description
Ella & Pitr online shop. Books, screen prints, tshirts and more from the artists. Feel free to ask any question : superbalais@gmail.com

Technology

CDN
Cloudflare
jQuery
1.11.3 known XSS (<3.5)
Analytics
  • Cloudflare Insights
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • assets.bigcartel.com×26
  • fonts.googleapis.com×2
  • ajax.googleapis.com×1
  • fonts.gstatic.com×1
  • js.stripe.com×1
  • static.cloudflareinsights.com×1

Registration

Registrar
Squarespace Domains II LLC
Created
2017-12-10
Expires
2026-12-10 171 days left
Updated
2025-11-30
Name servers
  • ns-cloud-b1.googledomains.com
  • ns-cloud-b2.googledomains.com
  • ns-cloud-b3.googledomains.com
  • ns-cloud-b4.googledomains.com

DNS records live

NS
  • ns-cloud-b1.googledomains.com
  • ns-cloud-b2.googledomains.com
  • ns-cloud-b3.googledomains.com
  • ns-cloud-b4.googledomains.com
MX
  • 10 mxa.mailgun.org
  • 10 mxb.mailgun.org

Email authentication weak

SPF
v=spf1 include:mailgun.org ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current) wrong cert

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2026-02-10 to 2027-03-04
Expires in 255 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.superbalais.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • short HSTS max-age
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
ALLOW-FROM https://my.bigcartel.com
x-content-type-options
nosniff
content-security-policy
frame-ancestors https://my.bigcartel.com https://www.bigcartel.com https://bigcartel.com https://*.bc-site-staging.pages.dev http://localhost:3000
strict-transport-security
max-age=7776000

Links to (2)

Linked from (1)

Use this data via API

Everything on this page for superbalais.com is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/superbalais.com" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →

Add a badge to your site

Own superbalais.com? Show it's tracked on indexo.dev and link visitors straight to this page.

indexo.dev — superbalais.com

<a href="https://indexo.dev/superbalais.com" target="_blank" rel="noopener">
  <img src="https://indexo.dev/superbalais.com/badge.svg" alt="indexo.dev — superbalais.com">
</a>