thescienceofhitting.com

.com crawl

First seen 2026-05-13 · Last seen 2026-05-13 · ok HTTP/1.1 200 1026 ms crawled 2026-05-19

US · 172.64.151.232 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

TSOH Investment Research (Alex Morris) | Substack

Description

Long-term investment research with 100% portfolio transparency (prior disclosure of all changes). TSOH is written by Alex Morris, a former buyside equities analyst, CFA Charterholder, and the author of "Buffett And Munger Unscripted". Click to read TSOH Investment Research (Alex Morris), a Substack publication with tens of thousands of subscribers.

Language

Canonical

https://thescienceofhitting.com/

Feeds

TSOH Investment Research (Alex Morris) RSS

Open Graph

url: https://thescienceofhitting.com/
title: TSOH Investment Research (Alex Morris) | Substack
description: Long-term investment research with 100% portfolio transparency (prior disclosure of all changes). TSOH is written by Alex Morris, a former buyside equities analyst, CFA Charterholder, and the author of "Buffett And Munger Unscripted". Click to read TSOH Investment Research (Alex Morris), a Substack publication with tens of thousands of subscribers.

Technology

CDN: Cloudflare
CMS: Gatsby

Analytics

Cloudflare Insights

Fonts

Google Fonts

Third-party hosts loaded (4)

substackcdn.com×254
fonts.gstatic.com×1
js.sentry-cdn.com×1
static.cloudflareinsights.com×1

Registration

Registrar

NameCheap, Inc.

Created

2021-10-29

Expires

2028-10-29 892 days left

Updated

2025-09-29

Name servers

dns1.registrar-servers.com
dns2.registrar-servers.com

DNS records

CNAME

target.substack-custom-domains.com

Email authentication no MX

SPF: v=spf1 include:spf.efwd.registrar-servers.com ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

WE1

from 2026-05-14 to 2026-08-12

Expires in 83 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://thescienceofhitting.com/

present

strict-transport-security
content-security-policy

findings

CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: frame-ancestors 'self' https://*.substack.com https://substack.com
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (2)

enable-javascript.com×1
substack.com×1

Linked from (1)

hiddengemsinvesting.com×1