indexo.dev

ycharts.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-13 · ok HTTP/1.1 200 4875 ms crawled 2026-05-13

US · 18.165.140.103 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
YCharts - Financial Research and Proposal Platform
Description
YCharts.com is the premier web based financial research and analysis platform for asset managers and advisors. Build custom Model Portfolios and generate proposals for client communications.
Language
en-US
Canonical
https://ycharts.com/

Open Graph

url
https://ycharts.com/
title
YCharts - Financial Research and Proposal Platform
description
YCharts.com is the premier web based financial research and analysis platform for asset managers and advisors. Build custom Model Portfolios and generate proposals for client communications.

Technology

CDN
Amazon CloudFront
Server
nginx
Analytics
  • Google Tag Manager
Third-party hosts loaded (7)
  • ycharts-media.s3.amazonaws.com×4
  • cdn.jsdelivr.net×3
  • cdn.plyr.io×2
  • cdn-cookieyes.com×1
  • cdnjs.cloudflare.com×1
  • js.hs-scripts.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
St Suite 600,Chicago, IL 60654

Registration

Registrar
Amazon Registrar, Inc.
Created
2008-11-11
Expires
2026-11-11 174 days left
Updated
2025-10-07
Name servers
  • ns-1228.awsdns-25.org
  • ns-1608.awsdns-09.co.uk
  • ns-351.awsdns-43.com
  • ns-934.awsdns-52.net

DNS records live

NS
  • ns-1228.awsdns-25.org
  • ns-1608.awsdns-09.co.uk
  • ns-351.awsdns-43.com
  • ns-934.awsdns-52.net
MX
Show 7 MX records
  • 10 aspmx.l.google.com
  • 20 alt1.aspmx.l.google.com
  • 30 alt2.aspmx.l.google.com
  • 40 aspmx2.googlemail.com
  • 50 aspmx3.googlemail.com
  • 60 aspmx4.googlemail.com
  • 70 aspmx5.googlemail.com
TXT
  • 05FAABD4E9
Verified for
  • Apple
  • Google
  • Meta
  • Zoom

Email authentication partial

SPF
v=spf1 include:_spf.google.com include:_spf.intacct.com include:spf.mandrillapp.com include:_spf.sendergen.com include:1645474.spf05.hubspotemail.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:re+z464dst4rae@dmarc.postmarkapp.com; sp=none; aspf=r;
policy: none (monitoring only) · sp=none
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCFSQQo8OXba7P8tAKsURCXR3/qaeYhdVWHKZBUIHFY5u011Ys1KU1ENIC9WqWo0Idee7oYn1gnovldn9/XEn…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2026-02-21 to 2026-09-07
Expires in 109 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://ycharts.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
default-src * data: blob: 'unsafe-inline' 'unsafe-eval'; frame-ancestors https://seekingalpha.com https://oculusab--c.vf.force.com https://oculusab.lightning.force.com https://*.ycharts.com https://ycharts.com https://app.hubspot.com
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (5)

Linked from (1)