indexo.dev

zoox.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 1302 ms crawled 2026-05-18

US · 3.164.206.94 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Zoox: It's Not a Car | Zoox
Description
Zoox is a purpose-built autonomous vehicle designed for riders, not drivers. Learn more about the Zoox robotaxi and the future of ride-hailing.
Language
en
Canonical
https://zoox.com

Open Graph

url
https://zoox.com
title
Zoox: It's Not a Car | Zoox
locale
en_US
site name
Zoox
description
Zoox is a purpose-built autonomous vehicle designed for riders, not drivers. Learn more about the Zoox robotaxi and the future of ride-hailing.

Technology

CDN
Amazon CloudFront
Server
AmazonS3
CMS
Next.js
Analytics
  • Google Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (5)

  • cdn.cookielaw.org×2
  • stream.mux.com×2
  • www.datocms-assets.com×2
  • www.google-analytics.com×2
  • www.googletagmanager.com×2

Social

Registration

Registrar
MarkMonitor Inc.
Created
2001-09-13
Expires
2026-09-13 116 days left
Updated
2025-01-24
Name servers
  • ns-1209.awsdns-23.org
  • ns-1618.awsdns-10.co.uk
  • ns-201.awsdns-25.com
  • ns-795.awsdns-35.net

DNS records live

NS
  • ns-1209.awsdns-23.org
  • ns-1618.awsdns-10.co.uk
  • ns-201.awsdns-25.com
  • ns-795.awsdns-35.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 19 TXT records
  • mandrill_verify.ZzsXiGontPt63DAnd5EAHw
  • apple-domain-verification=y4IUT7KgcnOXxdbJ
  • frci6s230ovnii732ioa8sirf1
  • 00DfK000005KRTg=1TBat00000002t3
  • anthropic-domain-verification-bagh2f=lmLsYFpqmlfp5PEFrCc7iahDk
  • 00Ddy000001G5EV=1TBdy00000000cj
  • jamf-site-verification=aipAckcL2Swmdh1qdeOerg
  • 966f5481-862a-4e6c-9557-c7a997a03d96
  • 00DO400000BoQNZ=1TBO40000000FFB
  • onetrust-domain-verification=5bdb80c0db6048b8aa891056a5bd17a3
  • box-domain-verification=ffea95cd0e0d61c302198367155b07e74fd534fa1d867662dc9bf9969b6f535d
  • smartsheet-site-validation=gZvxMXd80hXr_o4Rl_WdzXVIC7yfBvSX
  • stripe-verification=a0ef09795efbd2817bfab2734b334bb2e52bcc4a33ee7a1f997cd6edeea0092f
  • 00DO1000009Wg3l=1TBO10000000D6v
  • docusign=92aa1f65-58d5-4e0b-8f7a-31151eb119d5
  • stripe-verification=eabf8481da7e50af719ac8065d83b6907da342cee92a0e2d467dec17fc8fbbbe
  • google-site-verification=ooknrPbXiCJjsAdnjAkRKjbkCafCS9Aer-d3-N2reUo
  • 00Dbf000003hICr=1TBbf0000000All
  • infoblox-domain-mastery=b830b7ecbcc2f0e144a0863f80b45be01511608c550e3367ddce6c23367bdfd648

Email authentication partial

SPF
v=spf1 ip4:4.14.34.170 ip4:198.51.111.22 ip4:208.99.52.0/23 include:_spf.google.com include:spf.mandrillapp.com include:mail.zendesk.com include:amazonses.com include:_spf.salesforce.com include:docebosaas.com -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; pct=100; rua=mailto:zoox1@us.cp-dmarc.com,mailto:k8sd261cxj@rua.powerdmarc.com,mailto:dmarc@zoox.com; ruf=mailto:zoox1@us.cp-dmarc.com,mailto:k8sd261cxj@ruf.powerdmarc.com,mailto:dmarc@zoox.com; fo=1
policy: none (monitoring only) · sp=none
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt32q3TeCPKTYb/QxgBahvrZQMBIYNDcD8CHK0M1KTyqKN/WNdMKE+VlZAV8ZEzI3MO4TCmAsloQewo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2026-04-06 to 2026-10-21
Expires in 154 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://zoox.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • permissions-policy
findings
  • CSP uses wildcard sources
  • missing Referrer Policy
Header values
x-frame-options
DENY
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), fullscreen=(self), sync-xhr=(), midi=(), picture-in-picture=(), autoplay=(self), encrypted-media=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' *.google.com *.google.ca *.googletagmanager.com *.google-analytics.com *.googleadservices.com *.gstatic.com *.recaptcha.net *.youtube.com *.facebook.com *.facebook.net *.hotjar.com *.hotjar.io wss://*.hotjar.com:* *.onetrust.io *.onetrust.com *.cookielaw.org *.doubleclick.net *.tiktok.com *.amazon-adsystem.com *.basis.net *.sitescout.com *.paa-reporting-advertising.amazon *.samplicio.us *.lever.co *.list-manage.com *.amazonaws.com *.tiktokw.us *.spotify.com *.byspotify.com *.salesforce.com *.appsflyersdk.com sierra.chat; manifest-src 'self'; base-uri 'self'; form-action *.salesforce.com sierra.chat 'self'; font-src 'self' sierra.chat data:; frame-ancestors 'self' ; object-src 'none'; media-src 'self' *.mux.com *.datocms-assets.com; img-src 'self' blob: data: *.google.com *.google.ca *.googletagmanager.com *.google-analytics.com *.datocms-assets.com *.cookielaw.org arttrk.com *.doubleclick.net *.facebook.net *.facebook.com *.sitescout.com *.force.com *.salesforce.com
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (4)

Linked from (4)