indexo.dev

thinkst.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1195 ms crawled 2026-05-18

DE · 5.9.25.178 · AS24940 Hetzner Online GmbH

Reputation 100/100

Classifying

HTML metadata

Title
Thinkst
Language
en

Open Graph

url
https://thinkst.com
title
Thinkst Applied Research
description
Creators of the much loved Thinkst Canary. With products deployed on all 7 continents, and over two decades of published research presented around the world. We exist to work on difficult problems, and to solve them. No problem can withstand the assault of sustained thinking.

Technology

Server
nginx
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2009-08-27
Expires
2026-08-27 100 days left
Updated
2025-08-27
Name servers
  • ns-1147.awsdns-15.org
  • ns-1754.awsdns-27.co.uk
  • ns-593.awsdns-10.net
  • ns-61.awsdns-07.com

DNS records live

NS
  • ns-1147.awsdns-15.org
  • ns-1754.awsdns-27.co.uk
  • ns-593.awsdns-10.net
  • ns-61.awsdns-07.com
MX
Show 7 MX records
  • 10 aspmx.l.google.com
  • 20 alt1.aspmx.l.google.com
  • 30 alt2.aspmx.l.google.com
  • 30 aspmx2.googlemail.com
  • 30 aspmx3.googlemail.com
  • 30 aspmx4.googlemail.com
  • 30 aspmx5.googlemail.com
TXT
Show 7 TXT records
  • apple-domain-verification=fxhMytCeuXVBhT7k
  • duo_sso_verification=6UmsxYrLcybZaJ9DC2Xi21KucybXw2ekPr289C1TjPV5QI91u7rP0woL4agrEp9k
  • google-site-verification=V3ObwMkVnfETtCK0CQMkmAM73k0vv_IwcGw1vTOiGa0
  • openai-domain-verification=dv-lIV5QwMxoc7dRZCXZOKk9hG5
  • zoho-verification=zb65578868.zmverify.zoho.com
  • MS=ms31976589
  • ZOOM_verify_J4oQGscxyqdwk3kCXB1dsL

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:mail.zendesk.com include:amazonses.com include:one.zoho.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc-reports@thinkst.com; ruf=mailto:dmarc-reports@thinkst.com; fo=1; pct=100; adkim=s; aspf=s
policy: quarantine
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

R12
from 2026-05-04 to 2026-08-02
Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://thinkst.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; default-src 'self' 'unsafe-inline' https://*.canary.tools https://fonts.gstatic.com https://fonts.googleapis.com https://player.simplecast.com
strict-transport-security
max-age=63072000

Linked from (3)