indexo.dev

thebirthdaydraw.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-14 · ok HTTP/1.1 200 827 ms crawled 2026-05-13

US · 108.156.22.49 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
The Birthday Draw, Win £1 million with ITV & Global
Description
A new weekly prize draw by ITV and Global, where £1 could win £1 million. Enter our weekly draw now!
Language
en-GB

Technology

CDN
Amazon CloudFront
Server
AmazonS3
CMS
Gatsby

Third-party hosts loaded (2)

  • appleid.cdn-apple.com×1
  • js.stripe.com×1

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2024-09-11
Expires
2026-09-11 114 days left
Updated
2025-09-10
Name servers
  • ns-1475.awsdns-56.org
  • ns-173.awsdns-21.com
  • ns-1989.awsdns-56.co.uk
  • ns-894.awsdns-47.net

DNS records live

NS
  • ns-1475.awsdns-56.org
  • ns-173.awsdns-21.com
  • ns-1989.awsdns-56.co.uk
  • ns-894.awsdns-47.net
MX
  • 1 smtp.google.com
TXT
  • google-site-verification=M5vyDtVGA1mztBri3JRzCriTQ7DxTt4uPcnaU44lpF8

Email authentication strong

SPF
v=spf1 include:amazonses.com include:_spf.google.com include:mail.zendesk.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; sp=quarantine; pct=10; adkim=r; aspf=r; rua=mailto:webmaster@tectonicinteractive.com; ruf=mailto:webmaster@tectonicinteractive.com; ri=86400; fo=1
policy: quarantine · pct=10 · sp=quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4wYVAuP3xDQroJMCE4bwN+Rtqp79m9VLZwX/uHEAWT6n0BRq0kghf9Ys0f31VuH699fR2FedrhBXy…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2025-12-30 to 2027-01-29
Expires in 254 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://thebirthdaydraw.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), camera=(), microphone=()
x-content-type-options
nosniff
content-security-policy
default-src 'self';script-src 'self' 'unsafe-inline' https://appleid.cdn-apple.com https://analytics.tiktok.com https://c0.adalyser.com https://connect.facebook.net https://google-analytics.com https://js.stripe.com https://region1.google-analytics.com https://www.facebook.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://demo-1.conversionsapigateway.com https://sgtm.thebirthdaydraw.com;frame-src 'self' https://js.stripe.com https://www.google.com https://www.youtube.com https://analytics.tiktok.com https://c0.adalyser.com https://connect.facebook.net https://google-analytics.com https://js.stripe.com https://region1.google-analytics.com https://www.facebook.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://demo-1.conversionsapigateway.com https://sgtm.thebirthdaydraw.com;font-src 'self' https://fonts.gstatic.com data:;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.googletagma
strict-transport-security
max-age=15552000; includeSubDomains

Linked from (3)