|Site title||Welcome to Shopify|
|Description||The ecommerce platform made for you|
|Date first seen||July 2017|
|Netcraft Risk Rating||0/10|
|Netblock Owner||Google LLC|
|IP address||18.104.22.168 (VirusTotal)|
|IPv6 address||Not Present|
|Organisation||Shopify Inc., Canada|
|Top Level Domain||Commercial entities (.com)|
|DNS Security Extensions||unknown|
|0.0.0.0-255.255.255.255||N/A||IANA-BLK||The whole IPv4 address space|
|↳ 22.214.171.124-126.96.36.199||United States||NET104||American Registry for Internet Numbers|
|↳ 188.8.131.52-184.108.40.206||United States||GOOGLE-CLOUD||Google LLC|
|↳ 220.127.116.11||United States||GOOGLE-CLOUD||Google LLC|
This is not a HTTPS site. If you're looking for SSL/TLS information try the HTTPS site report.
Sender Policy Framework
A host's Sender Policy Framework (SPF) describes who can send mail on its behalf. This is done by publishing an SPF record containing a series of rules. Each rule consists of a qualifier followed by a specification of which domains to apply this qualifier to. For more information please see open-spf.org.
Warning: It appears that this host does not have an SPF record. There may be an SPF record on shopify.com: Check the site report.
Setting up an SPF record helps prevent the delivery of forged emails from your domain. Please note that an SPF record will only protect the domain it is added to and not any mail-enabled subdomains. It is recommended to add an SPF record to any subdomain with an MX record.
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a mechanism for domain owners to indicate how mail purporting to originate from their domain should be authenticated. It builds on SPF and DKIM, providing a method to set policy and to give reporting of failures. For more information please see dmarc.org.
Raw DMARC record:
v=DMARC1; p=reject; pct=100; fo=1; rua=mailto:firstname.lastname@example.org;ruf=mailto:email@example.com
|p=reject||Requested handling policy||Reject: emails that fail the DMARC mechanism check should be rejected. Rejection SHOULD occur during the SMTP transaction.|
|pct=100||Sampling rate||100% of messages from the Domain Owner's mail stream should have DMARC applied.|
|fo=1||Failure reporting options||Generate a DMARC failure report if any underlying authentication mechanism failed to produce an aligned "pass" result.|
|rua=mailto:firstname.lastname@example.org||Reporting URI(s) for aggregate email@example.com|
|ruf=mailto:firstname.lastname@example.org||Reporting URI(s) for failure email@example.com|
Site Technology (fetched 13 days ago)
Cloud & PaaS
Cloud computing is the use of computing resources (hardware and software) that are delivered as a service over a network (typically the Internet). Platform as a service (PaaS) is a category of cloud computing services that provide a computing platform and a solution stack as a service.
An application server is a server that provides software applications with services such as security, data services, transaction support, load balancing, and management of large distributed systems.
A character encoding system consists of a code that pairs each character from a given repertoire with something else such as a bit pattern, sequence of natural numbers, octets, or electrical pulses in order to facilitate the transmission of data (generally numbers or text) through telecommunication networks or for data storage.
HTTP compression is a capability that can be built into web servers and web clients to make better use of available bandwidth, and provide greater transmission speeds between both.
Web Browser Targeting
Web browser targeting enables software applications to make use of specific functions of the browser as well as optimizing the application for specific browser versions.
Technology Description Popular sites using this technology Document Compatibility Mode A meta-tag used in Internet Explorer 8 to enable compatibility mode www.amazon.co.uk, www.msn.com, www.yahoo.com X-Content-Type-Options Browser MIME type sniffing is disabled www.googleadservices.com, www.paypal.com, accounts.google.com X-Frame-Options Deny Prevents the web page being embedded in a frame www.t-online.de, www.virustotal.com, www.mozilla.org X-XSS-Protection Reporting Cross-site scripting attempts are reported www.netflix.com, www.shopify.com, netflix.com Strict Transport Security Web security policy mechanism whereby a web server declares that complying user agents are to interact with it using only secure HTTP connections disqus.com, login.microsoftonline.com, teams.microsoft.com Strict-Transport-Security (preload) No description www.amazon.com, www.upwork.com, www.researchgate.net X-XSS-Protection Disabled Cross-site scripting protection is disabled www.digikala.com, www.etoro.com, www.google.com Referrer Policy Restrict referrer information included in subsequent requests www.wilderssecurity.com, www.tumblr.com, www.repubblica.it Strict-Transport-Security (including subdomains) No description paragon-na.amazon.com, medium.com, discordapp.com Content Security Policy Report Report attacks in the browser www.okcupid.com, www.pixiv.net, www.kinopoisk.ru Stylesheet with SRI No description www.irctc.co.in, www.otto.de, vars.hotjar.com X-XSS-Protection Block Block pages on which cross-site scripting is detected player.vimeo.com
A Document Type Declaration, or DOCTYPE, is an instruction that associates a particular SGML or XML document (for example, a webpage) with a Document Type Definition (DTD).
HTML5 is a markup language for structuring and presenting content for the World Wide Web and a core technology of the Internet. It is the fifth revision of the HTML standard.
Technology Description Popular sites using this technology Viewport meta tag HTML5 tag usually used for mobile optimization
Cascading Style Sheets (CSS) is a style sheet language used for describing the presentation semantics (the look and formatting) of a document written in a markup language (such as XHTML).