indexo.dev

yabsta.com

.com crawl

First seen 2026-05-08 · Last seen 2026-05-19 · ok HTTP/1.1 200 9502 ms crawled 2026-05-15

US · 194.195.215.167 · AS63949 Akamai Connected Cloud

Reputation 94/100 dmarc monitor-only

sector tech type homepage

HTML metadata

Title
Yabsta - A Local Content Platform
Description
A content management platform built to create local community-focused online hubs - Business directories, local content publishers, Regional Tourism Organizations and more.
Language
en

Technology

Server
nginx
Ads
  • Google AdSense
Fonts
  • Adobe Fonts

Third-party hosts loaded (4)

  • pagead2.googlesyndication.com×1
  • sentry.yabsta.net×1
  • use.typekit.net×1
  • www.google.com×1

Social

Contact

Phone

Registration

Registrar
NameCheap, Inc.
Created
2007-05-23
Expires
2027-05-23 367 days left
Updated
2026-05-12
Name servers
  • ns-1528.awsdns-63.org
  • ns-1596.awsdns-07.co.uk
  • ns-250.awsdns-31.com
  • ns-881.awsdns-46.net

DNS records live

NS
  • ns-1528.awsdns-63.org
  • ns-1596.awsdns-07.co.uk
  • ns-250.awsdns-31.com
  • ns-881.awsdns-46.net
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • 2da5ac00-94e7-4591-8f74-171ade941ecb-20180801
  • QuoVadis=91167d7b-c6e1-4ca2-8ebe-f28c1f1ad7a0
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:spf.mandrillapp.com ?all
neutral (?all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Sectigo RSA Organization Validation Secure Server CA
from 2025-05-05 to 2026-06-06
Expires in 16 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.yabsta.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self' *.g.doubleclick.net browser.sentry-cdn.com *.adtrafficquality.google *.hs-scripts.com *.hs-banner.com *.hs-analytics.net cdn.jsdelivr.net p.typekit.net use.typekit.net sit.encoded.services live.encoded.services *.hotjar.io *.hotjar.com 'unsafe-inline' *.agendize.com vimeo.com *.vimeo.com *.openstreetmap.org *.instagram.com *.facebook.net www.youtube.com *.youtube.com www.google.com *.google.com googlesyndication.com *.googlesyndication.com *.www.yabsta.com 'unsafe-inline' *.google.com googlesyndication.com *.googlesyndication.com new-sentry.yabsta.net sentry.yabsta.net cdn.ravenjs.com www.google.com *.www.yabsta.com *.gstatic.com www.googletagservices.com www.googletagmanager.com *.google-analytics.com *.twitter.com *.facebook.net *.simpli.fi www.facebook.com *.facebook.com *.twimg.com *.doubleclick.net *.googleapis.com;img-src * data: blob:;font-src * data:;frame-src *; connect-src 'self' *.g.doubleclick.net *.adtrafficquality.google securepubads.g.doubleclick.net
strict-transport-security
max-age=3600; includeSubDomains

Links to (4)

Linked from (11)