xosoda.co
xosoda.co
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Shopify
- jQuery
- 3.2.1 known XSS (<3.5)
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (14)
- cdn.shopify.com×21
- cdn.jsdelivr.net×2
- drinkxoxo.com×2
- shop.app×2
- api.judge.me×1
- cdn.intelligems.io×1
- cdn.judge.me×1
- cdn.weglot.com×1
- cdn1.judge.me×1
- cdnjs.cloudflare.com×1
- fonts.shopifycdn.com×1
- monorail-edge.shopifysvc.com×1
- static.klaviyo.com×1
- www.googletagmanager.com×1
Social
DNS records live
- NS
-
- ns-cloud-e1.googledomains.com
- ns-cloud-e2.googledomains.com
- ns-cloud-e3.googledomains.com
- ns-cloud-e4.googledomains.com
- MX
-
- 1 smtp.google.com
- Verified for
-
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
E8
Expires in 33 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- short HSTS max-age
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;- strict-transport-security
max-age=7889238
Links to (5)
Linked from (1)
Use this data via API
Everything on this page for xosoda.co is available as JSON from the indexo.dev REST & MCP API.
curl "https://indexo.dev/api/v1/domains/xosoda.co" \ -H "X-API-Key: idx_..."