indexo.dev

zinnia.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-09 · ok HTTP/1.1 200 1972 ms crawled 2026-05-13

US · 13.33.235.93 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Zinnia - Modern Life & Annuity Technology
Description
Zinnia provides modern insurance technology solutions for carriers, distributors, and financial professionals. Streamline operations and accelerate growth.
Language
en
Canonical
https://zinnia.com/
Translations
  • en
  • fr

Open Graph

url
https://zinnia.com
title
Zinnia - Modern Life & Annuity Technology
locale
en_US
site name
Zinnia
description
Zinnia provides modern insurance technology solutions for carriers, distributors, and financial professionals. Streamline operations and accelerate growth.

Technology

CDN
Amazon CloudFront
CMS
Next.js
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (2)

  • cdn.cookielaw.org×3
  • www.googletagmanager.com×2

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1997-09-20
Expires
2027-09-19 486 days left
Updated
2024-06-26
Name servers
  • ns-1220.awsdns-24.org
  • ns-1735.awsdns-24.co.uk
  • ns-342.awsdns-42.com
  • ns-728.awsdns-27.net

DNS records live

NS
  • ns-1220.awsdns-24.org
  • ns-1735.awsdns-24.co.uk
  • ns-342.awsdns-42.com
  • ns-728.awsdns-27.net
MX
  • 10 mxa-003c9401.gslb.pphosted.com
  • 10 mxb-003c9401.gslb.pphosted.com
TXT
Show 10 TXT records
  • docker-verification=99b3dff2-97b4-4878-8ccd-d1cf3f3a1df7Whimsical = 41eb89e339f3eb8df86716b491deecde9f19352cairtable-verification=66a344d8bbcad132db5585b48d42e2dc
  • carta-domain-verification-3n5g9f=12uCtmNmQ6tjtYt3b6ZIXMjOv
  • nitro-verification-code=MjE3OTc4MDkzNDQxOTI0MDQwOQ==
  • 00Dao00001MhgQD=1TBVz00000000sr
  • atlassian-sending-domain-verification=109a0901-c794-460f-8171-a8341d2d1a8d
  • include:spf.mailanyone.net include:spf.protection.outlook.com ip4:52.237.32.134 ip4:52.237.21.75
  • box-domain-verification=ce1a163ac21261ace242ff30a1f2148bacf61e487a88ec463c2c1fe6bfe08beb
  • rovag_verification_token=BA710B48916249D1827FA388E931B23C
  • neat-pulse-domain-verification-qvxx56v=f7aadf8f-2700-4b72-8781-a13b7b5c1066
  • 4389563a4a81adfb50a8f88481d66729b8919eaa2eaccf599b
Verified for
  • 1Password
  • Anthropic
  • Atlassian
  • Cursor
  • Google
  • Microsoft 365
  • MongoDB
  • OpenAI
  • Pendo
  • Slack
  • Zapier
  • Zoom

Email authentication strong

SPF
v=spf1 mx a ip4:205.220.178.214 ip4:205.220.166.214 ip4:70.166.226.4 ip4:158.228.129.79 ip4:208.185.229.45 ip4:64.89.44.203 ip4:198.244.59.30 ip4:198.244.59.33 ip4:198.244.59.35 include:_aspf.spf04.hubspotemail.net include:docebosaas.com ip4:199.255.192.0/22 ip4:199.127.232.0/22 ip4:54.240.0.0/18 ip4:69.169.224.0/20 ip4:23.249.208.0/20 ip4:23.251.224.0/19 ip4:76.223.176.0/20 ip4:54.240.64.0/19 ip4:54.240.96.0/19 ip4:76.223.128.0/19 ip4:216.221.160.0/19 ip4:173.252.183.0/24 ip4:64.14.242.0/24 ip4:52.237.21.75 ip4:52.60.74.31 ip4:3.99.14.200 ip4:3.97.186.155 ip4:15.157.22.37 include:amazonses.com include:21964334.spf03.hubspotemail.net
no all qualifier
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com;ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8lx25YfhRpifDbmLCE6clrjARZFymQ9drHVAz+uDoGctNPmNggKRZ2cz1M2reBSsYpew6exLZDirob1Va…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD70eMqH6AYIlTveEc9plY/dw2XyOohUtamjSXBUu+g+Qj3BxmcGal3lKubthGS1QmClK1cIyXMc3E9fB+4AGoj64…
selectors probed

Certificate (current)

Amazon RSA 2048 M04
from 2025-11-06 to 2026-12-06
Expires in 199 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://zinnia.com/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.cookielaw.org https://js.hsforms.net https://js.hs-scripts.com https://js.hscollectedforms.net https://js.hsadspixel.net https://js.hs-banner.com https://js.hubspot.com https://js.hs-analytics.net https://www.googletagmanager.com https://www.google-analytics.com https://snap.licdn.com https://browser.sentry-cdn.com https://cdn.onetrust.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.googletagmanager.com; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: blob: https://cdn.cookielaw.org https://www.google-analytics.com https://www.googletagmanager.com https://perf-na1.hsforms.com https://forms.hsforms.com https://track.hubspot.com https://px.ads.linkedin.com https://px4.ads.linkedin.com https://www.linkedin.com https://fonts.gstatic.com https://*.onetrust.com https://*.amazonaws.com https://*.cloudfront.n
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (3)

Linked from (1)