us-mags.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-07 · ok HTTP/1.1 200 1812 ms crawled 2026-05-07

US · 151.101.65.124 · AS54113 Fastly, Inc.

Reputation 100/100

sector automotive type homepage

HTML metadata

Title: No matter your ride, there’s a wheel to reflect your vision | US Mags
Description: Whether you drive a muscle car, classic or modern street truck, there’s a US Mags wheel for your custom ride. Cast or forged, we can customize your wheels to truly reflect your vision. No one can offer so many styles, fitments and finish options.
Language: en
Canonical: https://www.us-mags.com/

Open Graph

url: https://www.us-mags.com/
title: US Mags | Home

Technology

CMS: Gatsby

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (5)

s7d9.scene7.com×15
rum.hlx.page×1
static.klaviyo.com×1
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Phone

800-575-7500

Registration

Registrar

Network Solutions, LLC

Created

2010-06-25

Expires

2031-06-25 1863 days left

Updated

2026-04-26

Name servers

ns-1127.awsdns-12.org
ns-142.awsdns-17.com
ns-1751.awsdns-26.co.uk
ns-529.awsdns-02.net

DNS records live

NS

ns-1127.awsdns-12.org
ns-142.awsdns-17.com
ns-1751.awsdns-26.co.uk
ns-529.awsdns-02.net

MX

10 usmags-com0e.mail.protection.outlook.com

TXT

Show 4 TXT records

klaviyo-site-verification=TUSj2J
MS=ms54038171
facebook-domain-verification=wbtqsww346q7u3arnlqcn1vhnux121
google-site-verification=K_TAYoz_h4ZAAXYfZIbx1LU8CMs7-khXdcj3cJSdPl0

Email authentication strong

SPF: v=spf1 include:spf.protection.outlook.com ~all
softfail (~all)
DMARC: v=DMARC1; p=reject; rua=mailto:25ebd622edce132@rep.dmarcanalyzer.com; ruf=mailto:25ebd622edce132@for.dmarcanalyzer.com; fo=1;
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-03-16 to 2026-06-14

Expires in 26 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.us-mags.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: worker-src blob:; font-src fonts.gstatic.com use.typekit.net *.googleapis.com *.gstatic.com data: *.typekit.net *.audioeye.com cdn.shopify.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com www.apptrian.com facebook.com www.facebook.com connect.facebook.net graph.facebook.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'self' 'unsafe-inline'; frame-ancestors *.googletagmanager.com *.gstatic.com *.jst.ai ajax.googleapis.com *.affirm.com *.launchdarkly.com connect.facebook.net *.audioeye.com *.imgur.com web.hyro.ws wss://web.hyro.ws 'self'; frame-src f
strict-transport-security: max-age=31536000

Links to (6)

Linked from (1)

ktlrestorations.com×2