indexo.dev

treezor.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 3101 ms crawled 2026-05-18

DE · 54.93.163.60 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Your One-stop shop for embedded finance - Treezor
Description
Treezor, the European Banking-as-a-Service leader, will support you throughout your payment project, every step of the way with its One-stop shop solution.
Language
en-US
Generator
WPML ver:4.6.7 stt:1,4,3,27,2;
Canonical
/
Translations
  • de
  • en
  • es
  • fr
  • it

Open Graph

url
/
title
Your One-stop shop for embedded finance - Treezor
locale
en_US
site name
Treezor
description
Treezor, the European Banking-as-a-Service leader, will support you throughout your payment project, every step of the way with its One-stop shop solution.

Technology

CDN
Amazon CloudFront
Server
AmazonS3
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • code.jquery.com×3
  • fonts.googleapis.com×3
  • fonts.gstatic.com×1
  • gmpg.org×1
  • static.zdassets.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
OVH sas
Created
2014-09-11
Expires
2026-09-11 113 days left
Updated
2025-09-12
Name servers
  • ns-1107.awsdns-10.org
  • ns-1888.awsdns-44.co.uk
  • ns-739.awsdns-28.net
  • ns-87.awsdns-10.com

DNS records live

NS
  • ns-1107.awsdns-10.org
  • ns-1888.awsdns-44.co.uk
  • ns-739.awsdns-28.net
  • ns-87.awsdns-10.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 9 TXT records
  • 1ae39dbb-9ab2-438f-828e-3ca35821599e
  • v=verifydomain MS=7114796
  • yVDCSFSoe7fZ6MWvlkMYUbwobzA=
  • monday-com-verification=pwhreClRzRrfPYS5NroP5SwtVA6gLecXNVPtBVkvU1Y
  • status-page-domain-verification=v71581xpdnx6
  • v=verifydomain MS=7730733
  • status-page-domain-verification=w0x712pdpv4x
  • _84ucxsbt3mqpz26s3ofy4vdxqz6wvwp
  • hpe-greenlake-domain-verification=7241556e4b356e3152512d304e6d674f595a5267666271496a6454684f794b6e
Verified for
  • Apple
  • Atlassian
  • DocuSign
  • Figma
  • Google

Email authentication strong

SPF
v=spf1 include:spf.mailjet.com include:spf.protection.outlook.com include:stspg-customer.com include:_spf.google.com include:mail.zendesk.com include:amazonses.com ip4:209.85.220.69 -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; ri=43200; rua=mailto:dmarc-reports@treezor.com;
policy: reject (enforced)
DKIM
  • google: v=DKIM1;k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLgeRx0dHCxuTVLSAKtG/CBWC0YL9PhMUQmlf+eehHN1GuJMh/lbvI4hczGV0mAzehs/7g5QMAyKNDS…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2026-03-13 to 2026-09-27
Expires in 129 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.treezor.com

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self' www.google.com fonts.gstatic.com *.axept.io *.doubleclick.net *.google-analytics.com *.googleadservices.com *.zdassets.com *.zendesk.com *.zopim.com *.youtube.com *.twimg.com *.welcomekit.co wss://*.zopim.com cdn.linkedin.oribi.io *.clarity.ms bat.bing.com tpc.googlesyndication.com static.axept.io www.googletagmanager.com www.treezor.com; img-src 'self' ssl.gstatic.com *.googletagmanager.com data: *.bing.com *.zendesk.com *.doubleclick.net *.axept.io *.google.com *.google.fr *.twimg.com axeptio.imgix.net *.google-analytics.com *.ads.linkedin.com *.clarity.ms axeptio.imgix.net favicons.axept.io *.gstatic.com *.googlesyndication.com; script-src 'self' 'unsafe-inline' bat.bing.com tagmanager.google.com *.zendesk.com snap.licdn.com www.gstatic.com www.google.com *.zopim.com www.googletagmanager.com *.axept.io *.youtube.com *.twimg.com *.welcomekit.co *.google-analytics.com *.zdassets.com code.jquery.com freegeoip.live *.googleadservices.com *.doubleclick.net *.clarity.ms
strict-transport-security
max-age=63072000; includeSubdomains; preload

Links to (3)

Linked from (3)