whenworks.app

.app crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 381 ms crawled 2026-05-19

US · 18.165.140.9 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title: WhenWorks

Open Graph

url: https://whenworks.app
title: WhenWorks
site name: WhenWorks
description: Eliminates back-and-forth by allowing others to book time with you online, only when you're free.

Technology

CDN: Amazon CloudFront
Server: AmazonS3

Analytics

Google Analytics

Fonts

Google Fonts

Third-party hosts loaded (3)

fonts.googleapis.com×2
www.google-analytics.com×2
fonts.gstatic.com×1

Contact

Email

help@whenworks.app

DNS records live

NS

ns-1006.awsdns-61.net
ns-1173.awsdns-18.org
ns-1722.awsdns-23.co.uk
ns-98.awsdns-12.com

MX

0 whenworks-app.mail.protection.outlook.com

Email authentication strong

SPF

v=spf1 include:zoho.eu include:spf.zoho.eu include:eu.transmail.net include:amazonses.com include:mail.zendesk.com include:spf.protection.outlook.com include:email.freshdesk.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; ruf=mailto:dmarc@whenworks.app

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jVgt3YgGXlVMw+q5InNRjdGlUWgaoh7tC7eHFSixIAna0PxZLLvUTxUuu+cN2tmlqW4Etf2oH1LFa…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-07-25 to 2026-08-23

Expires in 94 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://whenworks.app/

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Links to (1)

apple.com×3

Linked from (1)

rosemaryorchard.com×3