touchandpay.me
touchandpay.me
HTML metadata
Technology
- CMS
- Next.js
- JS framework
- Next.js
Third-party hosts loaded (3)
- frontendgroupdiag.blob.core.windows.net×12
- res.cloudinary.com×6
- unpkg.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1-01.azure-dns.com
- ns2-01.azure-dns.net
- ns3-01.azure-dns.org
- ns4-01.azure-dns.info
- MX
-
- 1 aspmx.l.google.com
- 2 alt1.aspmx.l.google.com
- 3 alt2.aspmx.l.google.com
- 4 alt3.aspmx.l.google.com
- 5 alt4.aspmx.l.google.com
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=quarantine;sp=none;adkim=r;aspf=r;pct=100;fo=1;rf=afrf;ri=86400policy: quarantine · sp=none - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0TaG36io0GzT1U0LTI6xmxpoteGkw29HflzUrjRu74cET3vZWX8pqBpUYKgnj0QJAfpB7er9L86Nu… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08qLG9y9rL5nVsSgWRRvFR0HGUVphrNnjuL4D5fkybTSnfUXWrKUS3ZF3a9OTTPP5MZ4AGgm1zSczuNtEn… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0K2bJvJWptxV3L2ljZkXLsz1Bzd7+7NPGJwS0cNpOnaMa+wJD4eh2nKcFL9l2f+oeKBWE9PQ/SjLQq8Wj5…
selectors probed - default:
Certificate (current)
GeoTrust TLS RSA CA G1
Expires in 77 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- referrer-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing content type protection
- missing Permissions Policy
Header values
- referrer-policy
no-referrer- x-frame-options
DENY- content-security-policy
connect-src '*' https:; script-src 'self' 'unsafe-eval' 'unsafe-inline' https:; img-src 'self' https: data:; object-src 'none'; frame-ancestors 'none';
Links to (5)
Linked from (1)
Use this data via API
Everything on this page for touchandpay.me is available as JSON from the indexo.dev REST & MCP API.
curl "https://indexo.dev/api/v1/domains/touchandpay.me" \ -H "X-API-Key: idx_..."