topatoco.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 838 ms crawled 2026-05-18

US · 104.21.27.77 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Welcome to TopatoCo! Hello!
Description: Do you like quality, exclusive merchandise designed by independent creators that makes everyone feel good? Then this is the place where you should be.
Language: en
Canonical: https://topatoco.com/

Open Graph

url: https://topatoco.com/
title: Welcome to TopatoCo! Hello!
site name: TopatoCo
description: Do you like quality, exclusive merchandise designed by independent creators that makes everyone feel good? Then this is the place where you should be.

Technology

CDN: Cloudflare
CMS: Shopify

Third-party hosts loaded (7)

cdn.shopify.com×9
monorail-edge.shopifysvc.com×2
shop.app×2
backinstock.useamp.com×1
cdn-images.mailchimp.com×1
d1liekpayvooaz.cloudfront.net×1
fonts.shopifycdn.com×1

Social

Contact

Address: st don't talk about itWe Have Social Medias, Too© Copyright 2026

Registration

Registrar

NameCheap, Inc.

Created

2004-11-30

Expires

2026-11-30 195 days left

Updated

2018-01-25

Name servers

isaac.ns.cloudflare.com
sandy.ns.cloudflare.com

DNS records live

NS

isaac.ns.cloudflare.com
sandy.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=lVy-RTk5GyLrAPVBbb9QnAC-ItFwUHgSUMFgph3ZqoE

Email authentication partial

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQClbppJW2xhLBg8u9bnAmr1ge/KYgyFoaBo01avQAmIWI89LnuaVOXerBCxyHDpP2yuGYlolqPQmAYUSWqAma…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

from 2026-03-30 to 2026-06-28

Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://topatoco.com/

present

strict-transport-security
content-security-policy
x-content-type-options

findings

short HSTS max-age
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: block-all-mixed-content; frame-ancestors *; upgrade-insecure-requests;
strict-transport-security: max-age=7889238