indexo.dev

xopero.com

.com crawl

First seen 2026-05-24 · Last seen 2026-05-31 · ok HTTP/1.1 200 2810 ms crawled 2026-05-29

US · 104.20.47.151 · AS13335 Cloudflare, Inc.

Reputation 92/100 weak subdomain policy

Classifying

HTML metadata

Title
All-in-One Enterprise Backup & Disaster Recovery for Businesses | Xopero Software
Language
en
Translations
  • en
  • pl

Technology

CDN
Cloudflare
jQuery
3.3.1 known XSS (<3.5)
Analytics
  • Cloudflare Insights
  • Google Tag Manager
Social widgets
  • YouTube Embed

Third-party hosts loaded (4)

  • crm.zoho.com×1
  • static.cloudflareinsights.com×1
  • www.googletagmanager.com×1
  • www.youtube.com×1

Social

Contact

Phone

Registration

Registrar
InterNetX GmbH
Created
2014-11-28
Expires
2028-11-28 911 days left
Updated
2025-03-10
Name servers
  • cass.ns.cloudflare.com
  • hayes.ns.cloudflare.com

DNS records live

NS
  • cass.ns.cloudflare.com
  • hayes.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 9 TXT records
  • 469fd6a0b0c127a75b10ffc40afbcaad14af03cae5c9a80465e5d0d2a178e8f
  • MS=E8C49E1FA14CF20DFC90AD3E223640FC857811C8
  • 2fdc23068ba1f96bb786cd27f9c6d38787fc5c73b04edae61f654a803e9f6c47
  • linkedin-site-verification=43f47c04-ce61-49f1-ad3f-5514218c4cef
  • 4fcae97c874f54390f1f15dacdb8bf472f39fed4a5c79ff8ae31de6c5a65b69e
  • mojecertpl-site-verification-JQF2iJc0f2N2E6Pubq6zEs5jbrcvMi1b
  • e35806e84cb4861dd59ddad2a6c821e1f300bfb54c49ec528a113daab28a791
  • 35bf67186ae360a65d8f9b52e09b82fe2393dcdd9c400440bb417ca6404fde7e
  • 537a7373fa49e2cf25c7e4f4e956bbee5bdcd85439f8cb83d3a69c0810bbaa0
Verified for
  • Apple
  • Atlassian
  • Google
  • Stripe
  • Zoho

Email authentication strong

SPF
v=spf1 ip4:74.201.84.45/32 ip4:5.152.161.204/32 ip4:46.20.49.50/32 ip4:46.20.49.51/32 ip4:46.20.49.60/32 ip4:46.20.49.32/32 ip4:162.210.199.214/32 ip4:135.84.80.185/32 ip4:87.98.236.253/32 ip4:51.77.222.65/32 include:transmail.net include:_spf.google.com include:mail.zendesk.com include:zcsend.net include:zoho.eu include:146841430.spf08.hubspotemail.net -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=none; rua=mailto:postmaster@xopero.com; ruf=mailto:postmaster.ruf@xopero.com; rf=afrf; pct=100; ri=86400
policy: reject (enforced) · sp=none
DKIM
  • google: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvq7JR4db5ueG96AOSYEroMASFIqjGBiDWkAKhaRFBqeKztvrkGEY6cealPZigJcrsRVcLLLD0pwf0/yn…
selectors probed

Certificate (current)

Certum Domain Validation CA SHA2
from 2025-07-10 to 2026-07-10
Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://xopero.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' https: 'unsafe-inline'; connect-src 'self' https://*.xopero.com https://*.clarity.ms https://*.gaconnector.com https://*.zohopublic.com wss://*.zohopublic.com ws://*.zohopublic.com https://*.google-analytics.com https://pagead2.googlesyndication.com https://*.cookiebot.com https://*.google.com https://google.com https://*.linkedin.com https://*.facebook.com https://www.googleadservices.com https://pro.ip-api.com https://alocdn.com https://*.liadm.com https://9xgnrndqve.execute-api.us-west-2.amazonaws.com https://a.usbrowserspeed.com https://*.claydar.com https://*.hubspot.com https://*.hs-scripts.com https://*.hs-analytics.net https://*.hsforms.com https://*.hsappstatic.net https://*.hubapi.com https://*.hscollectedforms.net https://*.facebook.com; img-src 'self' https: data:;
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (9)

Linked from (5)