|Site title||Hotjar | Behavior Analytics Made Easy | Website Heatmaps & More|
|Date first seen||February 2017|
|Netcraft Risk Rating||0/10|
|Description||See how visitors are really using your website, collect user feedback and turn more visitors into customers.|
|Netblock Owner||Packet Host, Inc.|
|IP address||184.108.40.206 (VirusTotal)|
|IPv6 address||Not Present|
|Organisation||Hotjar Ltd, Obfuscated whois Gandi-Paris, 75013, France|
|Top Level Domain||Commercial entities (.com)|
|DNS Security Extensions||unknown|
|0.0.0.0-255.255.255.255||N/A||IANA-BLK||The whole IPv4 address space|
|↳ 220.127.116.11-18.104.22.168||United States||NET147||Various Registries (Maintained by ARIN)|
|↳ 22.214.171.124-126.96.36.199||Netherlands||RIPE-ERX-147-75-0-0||RIPE Network Coordination Centre|
|↳ 188.8.131.52-184.108.40.206||Switzerland||COSTRA-NET||Costra S.A.|
|↳ 220.127.116.11-18.104.22.168||United States||PACKET-NET-64-19||Packet Host, Inc.|
|↳ 22.214.171.124||United States||PACKET-NET-64-19||Packet Host, Inc.|
|Organisational unit||Not Present|
|Subject Alternative Name||vars.hotjar.com|
|Validity period||From Dec 5 2019 to Mar 4 2020 (2 months, 4 weeks, 2 days)|
|Public key algorithm||rsaEncryption|
|Public key length||2048|
|Perfect Forward Secrecy||Yes|
|Next Protocol Negotiation||h2,http/1.1|
|Supported TLS Extensions||RFC5746 renegotiation info, RFC4366 server name, RFC4492 EC point formats, RFC5077 session ticket, Next Protocol Negotiation, unknown|
|Issuing organisation||Let's Encrypt|
|Issuer common name||Let's Encrypt Authority X3|
|Issuer unit||Not Present|
|Issuer location||Not Present|
|Issuer state||Not Present|
|Certificate Revocation Lists||Not Present|
|Public Key Hash||5b8586afc5614c093ebab1f177d9b68b3e1517f644458939629f1a7a2b96dfdf|
|OCSP servers||http://ocsp.int-x3.letsencrypt.org - 100% uptime in the past 24 hours
|OCSP stapling response||No response received|
Signed Certificate Timestamps (SCTs)
|Certificate||Cloudflare Nimbus 2020
|Certificate||Google Argon 2020
This site does not support the SSL version 3 protocol.
The site did not offer the Heartbeat TLS extension prior to the Heartbleed disclosure, and so was not exploitable.
This test does not exploit the Heartbleed vulnerability but uses information from conventional HTTPS requests. More information about Heartbleed detection.
SSL Certificate Chain
|Common name||DST Root CA X3|
|Organisational unit||Not Present|
|Organisation||Digital Signature Trust Co.|
|Validity period||From 2000-09-30 to 2021-09-30|
|Common name||Let's Encrypt Authority X3|
|Organisational unit||Not Present|
|Validity period||From 2016-03-17 to 2021-03-17|
|Netblock owner||IP address||OS||Web server||Last seen|
|Packet Host, Inc. 30 Vesey Street, Suite 900 New York, NY 10007||126.96.36.199||Linux||unknown||17-Jan-2020|
|Packet Host, Inc. 30 Vesey Street, Suite 900 New York, NY 10007||188.8.131.52||Linux||unknown||2-Sep-2019|
|Packet Host, Inc. 30 Vesey Street, Suite 900 New York, NY 10007||184.108.40.206||Linux||unknown||30-Jul-2019|
Sender Policy Framework
A host's Sender Policy Framework (SPF) describes who can send mail on its behalf. This is done by publishing an SPF record containing a series of rules. Each rule consists of a qualifier followed by a specification of which domains to apply this qualifier to. For more information please see open-spf.org.
Warning: It appears that this host does not have an SPF record. Setting up an SPF record helps prevent the delivery of forged emails from your domain.
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a mechanism for domain owners to indicate how mail purporting to originate from their domain should be authenticated. It builds on SPF and DKIM, providing a method to set policy and to give reporting of failures. For more information please see dmarc.org.
This host does not have a DMARC record.
|Company||Primary Category||Tracker||Popular Sites with this Tracker|
|Cloudflare||CDN||Cloudflare||www.asus.com, www.glassdoor.com, www.sciencedirect.com|
|Analytics||Facebookpixel||www.reverso.net, www.webmd.com, www.mediafire.com|
|Widget||www.w3schools.com, www.interia.pl, www.redfin.com|
|Advertising||Google AdSense||www.geeksforgeeks.org, www.repubblica.it, www.pcmag.com|
|Segment||Analytics||Segment||www.biggerpockets.com, snapwidget.com, vars.hotjar.com|
|Wistia||Analytics||Wistia||www.oberlo.com, www.varonis.com, www.watchguard.com|
Site Technology (fetched 27 days ago)
Cloud & PaaS
Cloud computing is the use of computing resources (hardware and software) that are delivered as a service over a network (typically the Internet). Platform as a service (PaaS) is a category of cloud computing services that provide a computing platform and a solution stack as a service.
A web accelerator is a proxy server that reduces web site access times.
Includes all the main technologies that Netcraft detects as running on the server such as PHP.
Technology Description Popular sites using this technology SSL A cryptographic protocol providing communication security over the Internet outlook.live.com
Client-Side Scripting Frameworks
Frameworks or libraries allow for easier development of applications by providing an Application Program Interface (API) or a methodology to follow whilst developing.
Content Delivery Network
A content delivery network or content distribution network (CDN) is a large distributed system of servers deployed in multiple data centers in the Internet. The goal of a CDN is to serve content to end-users with high availability and high performance.
Content Management System
A content management system (CMS) is a computer program that allows publishing, editing and modifying content as well as maintenance from a central interface.
Technology Description Popular sites using this technology HubSpot CMS No description blog.knowbe4.com
Web analytics is the measurement, collection, analysis and reporting of internet data for purposes of understanding and optimizing web usage.
A character encoding system consists of a code that pairs each character from a given repertoire with something else such as a bit pattern, sequence of natural numbers, octets, or electrical pulses in order to facilitate the transmission of data (generally numbers or text) through telecommunication networks or for data storage.
HTTP compression is a capability that can be built into web servers and web clients to make better use of available bandwidth, and provide greater transmission speeds between both.
Web Browser Targeting
Web browser targeting enables software applications to make use of specific functions of the browser as well as optimizing the application for specific browser versions.
Technology Description Popular sites using this technology Expect Certificate Transparency Header Enforce Certificate Transparency requirements www.icloud.com, www.linkedin.com, mail.protonmail.com Strict Transport Security Web security policy mechanism whereby a web server declares that complying user agents are to interact with it using only secure HTTP connections login.microsoftonline.com, t.co, vk.com Expect Certificate Transparency Report Header Report the use of misissued certificates for a site medium.com, etherscan.io, static.addtoany.com Content Security Policy Detect and mitigate attacks in the browser opus.analytics.yahoo.com, yandex.ru, teams.microsoft.com
A Document Type Declaration, or DOCTYPE, is an instruction that associates a particular SGML or XML document (for example, a webpage) with a Document Type Definition (DTD).
HTML5 is a markup language for structuring and presenting content for the World Wide Web and a core technology of the Internet. It is the fifth revision of the HTML standard.
Technology Description Popular sites using this technology Viewport meta tag HTML5 tag usually used for mobile optimization
Cascading Style Sheets (CSS) is a style sheet language used for describing the presentation semantics (the look and formatting) of a document written in a markup language (such as XHTML).