indexo.dev

wazuh.com

.com crawl

First seen 2026-05-14 · Last seen 2026-05-19 · ok HTTP/1.1 200 1990 ms crawled 2026-05-19

US · 13.33.235.104 · AS16509 Amazon.com, Inc.

Reputation 100/100

sector tech type homepage

HTML metadata

Title
Wazuh - Open Source XDR. Open Source SIEM.
Description
Wazuh is a free and open source security platform that unifies XDR and SIEM protection for endpoints and cloud workloads.
Language
en-US
Canonical
https://wazuh.com/
Feeds

Open Graph

url
https://wazuh.com/
title
Wazuh - Open Source XDR. Open Source SIEM.
locale
en_US
site name
Wazuh
description
Wazuh is a free and open source security platform that unifies XDR and SIEM protection for endpoints and cloud workloads.

Technology

CDN
Amazon CloudFront
Server
Apache
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • ajax.googleapis.com×2
  • cdn.jsdelivr.net×2
  • challenges.cloudflare.com×2
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
st blog posts, announcements and releases.© 2026

Registration

Registrar
Gandi SAS
Created
2014-12-24
Expires
2026-12-24 217 days left
Updated
2025-11-19
Name servers
  • ns-1427.awsdns-50.org
  • ns-1539.awsdns-00.co.uk
  • ns-328.awsdns-41.com
  • ns-704.awsdns-24.net

DNS records live

NS
  • ns-1427.awsdns-50.org
  • ns-1539.awsdns-00.co.uk
  • ns-328.awsdns-41.com
  • ns-704.awsdns-24.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • atlassian-sending-domain-verification=94df1e71-9a5e-4edf-a19a-7bb83ba25770
Verified for
  • Atlassian
  • Google

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:_spf.atlassian.net include:_spf.salesforce.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:3cfdfe0a5903990@rep.dmarcanalyzer.com; ruf=mailto:3cfdfe0a5903990@for.dmarcanalyzer.com; pct=50; fo=1;
policy: quarantine · pct=50
DKIM
Show 4 DKIM selectors
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7/3Zl185vo7oDPsUDnSoFfxVRHXCgZTCe3yvLAWta9v5OMkmB/OTN6I1ULtnNgbvvw+h9ActFQQLnr1/clI…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1gU64wM331J2x42nJ5l0VWV9mz2yyXOQwlgqvQ5eOkANWTV43m7GSCUU9MBBKHDpm6+8o9nY+5vm506tZ…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8tvSmzHnj/KkHIVAuonmai05ZFiat3Js8GETYTxg0Pfb3773i53A56TIx89vrodwSgVPFTQFqQ1Tg/KOpQM6YlC…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2026-05-06 to 2026-11-20
Expires in 183 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://wazuh.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(self "https://*.stripe.com"), usb=()
x-content-type-options
nosniff
content-security-policy
connect-src 'self' https://ipinfo.io/json https://api.github.com https://analytics.google.com https://www.google-analytics.com https://region1.google-analytics.com https://region1.analytics.google.com https://stats.g.doubleclick.net https://www.google.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* https://surveystats.hotjar.io https://content.hotjar.io wss://*.hotjar.com https://cdn.linkedin.oribi.io https://px.ads.linkedin.com/ https://www.redditstatic.com/ads/conversions-config/ https://conversions-config.reddit.com/ https://pixel-config.reddit.com/pixels/; base-uri *.wazuh.com wazuh.com; default-src 'self' https: data:; script-src 'self' *.wazuh.com wazuh.com *.googleapis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://connect.facebook.net http://static.hotjar.com https://static.hotjar.com https://script.hotjar.com https: 'unsafe-inline'; object-src
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (6)

Linked from (1)