indexo.dev

tnaot.app

.app crawl

First seen 2026-05-14 · Last seen 2026-05-19 · ok HTTP/1.1 200 2830 ms crawled 2026-05-19

US · 172.67.169.33 · AS13335 Cloudflare, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
TNAOT Media - Information Creates Value
Description
Leading Khmer information platform in Cambodia, providing comprehensive services including latest news, life guides, job recruitment, and business investment.
Language
en

Open Graph

title
TNAOT Media
locale
en_US
description
Leading Khmer information platform in Cambodia, providing comprehensive services including latest news, life guides, job recruitment, and business investment.

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

DNS records live

NS
  • adaline.ns.cloudflare.com
  • kip.ns.cloudflare.com
TXT
  • tiktok-developers-site-verification=n2zXGi4Ubr0AElHS680OaQf3dlYQv9FC
Verified for
  • Google

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-14 to 2026-07-13
Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.tnaot.app/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https: https://res.wx.qq.com https://www.tiktok.com https://*.tiktokcdn.com https://*.tiktokcdn-us.com https://*.ttwstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://www.youtube.com https://s.ytimg.com https://*.googlevideo.com https://player.vimeo.com https://*.vimeocdn.com https://player.twitch.tv https://*.twitch.tv https://open.spotify.com https://*.spotify.com https://fast.wistia.com https://*.wistia.com https://www.facebook.com https://*.fbcdn.net https://w.soundcloud.com https://api.soundcloud.com https://www.dailymotion.com https://*.dmcdn.net https://www.mixcloud.com https://*.bilibili.com https://*.gammaplatform.com *.gammaplatform.com; script-src-elem 'self' 'unsafe-inline' https: https://res.wx.qq.com https://www.tiktok.com https://*.tiktokcdn.com https://*.tiktokcdn-us.com https://*.ttwstatic.com https://www.googletagmanager.com https://www.google-analytics.com http

Links to (4)

Linked from (1)