indexo.dev

tensarplus.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-16 · ok HTTP/1.1 200 2732 ms crawled 2026-05-14

US · 54.157.108.158 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Tensar+ | A Better Way to Build™
Description
For years, construction professionals around the world have trusted Tensar's design software to evaluate design options and optimize performance. Experience the newly enhanced web-based software for free that allows engineers, contractors, and owners to design with Tensar's engineered solutions.

Open Graph

title
Tensar+ | A Better Way to Build™
description
For years, construction professionals around the world have trusted Tensar's design software to evaluate design options and optimize performance. Experience the newly enhanced web-based software for free that allows engineers, contractors, and owners to design with Tensar's engineered solutions.

Technology

CDN
Azure Front Door
CMS
Gatsby

Registration

Registrar
GoDaddy Corporate Domains, LLC
Created
2021-07-19
Expires
2026-07-19 60 days left
Updated
2025-04-09
Name servers
  • devin.ns.cloudflare.com
  • karsyn.ns.cloudflare.com

DNS records live

NS
  • devin.ns.cloudflare.com
  • karsyn.ns.cloudflare.com

Email authentication no MX

SPF
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificates

Loading certificate

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.tensarplus.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self' api.tensarapp.com auth.tensarcorp.com wss://ws.hotjar.com *.livechatinc.com *.acsbapp.com acsbapp.com *.wistia.com *.litix.io *.hsforms.com hubspot-forms-static-embed.s3.amazonaws.com *.hubspot.com *.googleapis.com *.gstatic.com *.visualstudio.com *.sentry-cdn.com *.lr-in-prod.com *.hotjar.io *.google-analytics.com tensarappstorage.blob.core.windows.net; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.livechatinc.com *.acsbapp.com acsbapp.com *.jsdelivr.net/npm/monaco-editor@0.33.0/ *.wistia.com *.sentry-cdn.com *.hsforms.net *.googleapis.com *.lr-in-prod.com *.hotjar.com *.googletagmanager.com; media-src 'self' blob: wistia.com; img-src 'self' data: blob: *.ctfassets.net ctfassets.net tensarportalstorageacct.blob.core.windows.net tensarappstorage.blob.core.windows.net sdscontentstorage.blob.core.windows.net *.openstreetmap.org *.wistia.com *.wistia.net *.hsforms.com *.googleapis.com *.gstatic.com cdn.files-text.com *.livechat-static.com *.googletagmanager.com; fon
strict-transport-security
max-age=63072000

Linked from (3)