wipperoz.com
HTML metadata
Technology
- CDN
- Vercel
Social
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 2017-05-18
- Expires
- 2027-05-18 364 days left
- Updated
- 2026-04-13
- Name servers
-
- ns-1056.awsdns-04.org
- ns-1549.awsdns-01.co.uk
- ns-416.awsdns-52.com
- ns-632.awsdns-15.net
DNS records live
- NS
-
- ns-1056.awsdns-04.org
- ns-1549.awsdns-01.co.uk
- ns-416.awsdns-52.com
- ns-632.awsdns-15.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 8 TXT records
MS=72C54B031E72A7F4000A751B5767560E9DB88896atlassian-domain-verification=CILNmQ6PlUre+YQEwj3exWH/4j8VCluUosyjVKpnNRdgt3PAsW36CG7wsc9ohpfjfacebook-domain-verification=vqrdck35n412d9oc1ut4t9emdlrl7ygoogle-site-verification=SPPeXIZBOnsJGRIk6NVUMaXKqI6UWKsdCRBdcbqRcVolinkedin-site-verification=a32ba379-f3c1-48c7-a703-59945eb4be06pinterest-site-verification=d8633eb5e29a827437c12d4593621d1estripe-verification=433169722cf17a063caa127c0db06e1383273046cd2db4dd2b4f5667e64cc9a8stripe-verification=e2c2ab6f7aec42d6ef7b8670c03dfa0c20d6e03baf2a2d46f2100be9a0faead5
Email authentication partial
- SPF
-
v=spf1 include:_spf.google.com -allstrict (-all) - DMARC
- not published
- DKIM
-
- k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - k2:
Certificate (current)
R13
Expires in 57 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
accelerometer=(), ambient-light-sensor=(), autoplay=(self "https://app.wipperoz.com" "https://app.wipperoz-dev.com"), battery=(), browsing-topics=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(self "https://app.wipperoz.com" "https://app.wipperoz-dev.com"), gamepad=(), geolocation=(), gyroscope=(), hid=(), identity-credentials-get=(), idle-detection=(), interest-cohort=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(self "https://app.wipperoz.com" "https://app.wipperoz-dev.com"), publickey-credentials-create=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), storage-access=(self "https://app.wipperoz.com" "https://app.wipperoz-dev.com"), usb=(), web-share=(self), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; form-action 'self' https://app.wipperoz.com https://app.wipperoz-dev.com; frame-ancestors 'none'; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://www.googleadservices.com https://*.posthog.com https://va.vercel-scripts.com https://vitals.vercel-insights.com; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://googleads.g.doubleclick.net https://www.googleadservices.com https://*.posthog.com https://va.vercel-scripts.com https://vitals.vercel-insights.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https://cdn.sanity.io https://www.googletagmanager.com https://www.google-analytics.com https://www.google.com https://www.google.com.au https://googleads.g.doubleclick.net https://www.googleadservices.com https://*.posthog.com https://app- strict-transport-security
max-age=63072000; includeSubDomains; preload- cross-origin-opener-policy
same-origin- cross-origin-resource-policy
same-site