indexo.dev

twistopay.com

.com crawl

First seen 2026-05-29 · Last seen 2026-05-29 · ok HTTP/1.1 200 526 ms crawled 2026-05-31

US · 104.26.2.58 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Twisto - Banks are for paychecks. Twisto is for everyday finances.
Description
Twisto is on a mission to challenge the status quo of everyday finances via exceptional customer experience by being at the forefront in delivering cutting edge technology. Pay simply, fast and securely.
Language
en

Open Graph

url
https://www.twistopay.com
email
hello@twistopay.com
title
Twisto.cz | Banks are for paychecks. Twisto is for everyday finances.
site name
Twisto
description
Twisto is on a mission to challenge the status quo of everyday finances via exceptional customer experience by being at the forefront in delivering cutting edge technology. Pay simply, fast and securely.

Technology

CDN
Cloudflare
CMS
Gatsby
jQuery
3.2.1 known XSS (<3.5)
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×1
  • www.googletagmanager.com×1

Registration

Registrar
Gransy, s.r.o.
Created
2013-07-04
Expires
2026-07-04 31 days left
Updated
2026-04-14
Name servers
  • hugh.ns.cloudflare.com
  • jasmine.ns.cloudflare.com

DNS records live

NS
  • hugh.ns.cloudflare.com
  • jasmine.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 mx ip4:95.168.205.32/27 -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; rua=mailto:dmarc@twisto.cz
policy: reject (enforced) · sp=reject
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-05-11 to 2026-08-09
Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://twistopay.com/

present
  • strict-transport-security
findings
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
strict-transport-security
max-age=31536000; includeSubDomains; preload

Linked from (1)