indexo.dev

therebelape.com

.com crawl

First seen 2026-05-09 · Last seen 2026-05-15 · ok HTTP/1.1 200 806 ms crawled 2026-05-15

US · 172.67.167.44 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Roofing Marketing Company | Rebel Ape
Description
Rebel Ape Marketing builds complete lead generation systems for roofing contractors. Website design, Google Ads, SEO, and local marketing. Based in North Ogden, Utah. No contracts.
Language
en
Generator
Astro v5.16.12
Canonical
https://therebelape.com/

Open Graph

url
https://therebelape.com/
title
Roofing Marketing Company | Rebel Ape
site name
Rebel Ape Marketing
description
Rebel Ape Marketing builds complete lead generation systems for roofing contractors. Website design, Google Ads, SEO, and local marketing. Based in North Ogden, Utah. No contracts.

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Ads
  • Meta Pixel

Third-party hosts loaded (6)

  • rebelapecdn.b-cdn.net×22
  • www.googletagmanager.com×2
  • connect.facebook.net×1
  • scripts.simpleanalyticscdn.com×1
  • widgets.leadconnectorhq.com×1
  • www.facebook.com×1

Contact

Phone
Address
84414, North Ogden, UT, US

Registration

Registrar
NameCheap, Inc.
Created
2017-11-17
Expires
2026-11-17 180 days left
Updated
2026-03-31
Name servers
  • logan.ns.cloudflare.com
  • melinda.ns.cloudflare.com

DNS records live

NS
  • logan.ns.cloudflare.com
  • melinda.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google
  • Meta
  • Pinterest
  • Yandex

Email authentication partial

SPF
v=spf1 a mx include:_spf.elasticemail.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-03-31 to 2026-06-29
Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://therebelape.com/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' https: data: blob: 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; connect-src 'self' https: wss:; frame-src https://link.therebelape.com https://www.google.com https://www.youtube.com https://*.leadconnectorhq.com https://*.msgsndr.com; object-src 'none'; base-uri 'self'

Linked from (1)