indexo.dev

walomo.com

.com crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 6762 ms crawled 2026-05-15

FR · 37.235.93.99 · AS24935 Eurofiber France SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
WALOMO - Accueil
Description
WALOMO habille les marques depuis 1984. Pour les équipes, WALOMO conçoit des vêtements iconiques. Pour les espaces, WALOMO dessine des signalétiques emblématiques. Pour promouvoir les bonnes valeurs, WALOMO fabrique des ballons de sport personnalisés.
Language
fr

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • ik.imagekit.io×137
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
rd II, 70 rue de la perdrixBP 47008

Registration

Registrar
Network Solutions, LLC
Created
2000-01-13
Expires
2028-01-13 604 days left
Updated
2024-12-19
Name servers
  • ns2.amen.fr
  • paris.amen.fr

DNS records live

NS
  • ns2.amen.fr
  • paris.amen.fr
MX
  • 10 walomo-com.mail.protection.outlook.com
TXT
  • MS=ms70444978

Email authentication partial

SPF
v=spf1 include:servers.mcsv.net ip4:80.251.105.245 include:spf.protection.outlook.com include:mailgun.org include:smtp.sewan.fr include:smtp-vm2.sewan.fr include:smtp-vm3.sewan.fr include:smtp-vm4.sewan.fr ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-03-13 to 2026-09-28
Expires in 132 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.walomo.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com fonts.googleapis.com *.googleapis.com data: https://www.googletagmanager.com https://fonts.gstatic.com https://static.payzen.eu/static/ *.fontawesome.com https://fonts.bunny.net https://cdnjs.cloudflare.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com unpkg.com *.unpkg.com imagekit.io *.imagekit.io https://secure.payzen.eu/vads-payment/ https://api.payzen.eu/api-payment/ https://static.payzen.eu/static/ 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerc
strict-transport-security
max-age=63072000; includeSubDomains; preload, max-age=63072000; includeSubDomains; preload

Links to (6)

Linked from (1)