Site report for https://www.netcraft.com
Look up another site?
| Site title | Netcraft | Internet Research, Cybercrime Disruption and PCI Security Services |
|---|---|
| Site rank | 2279 |
| Description | Internet Research, Cybercrime Disruption and PCI Security Services |
| Date first seen | December 2013 |
|---|---|
| Netcraft Risk Rating | 0/10 |
| Primary language | English |
| Site | https://www.netcraft.com |
|---|---|
| Netblock Owner | Amazon.com, Inc. |
| Hosting company | Amazon |
| Hosting country | US |
| IPv4 address | 13.224.68.31 (VirusTotal) |
| IPv4 autonomous systems | AS16509 |
| IPv6 address | Not Present |
| IPv6 autonomous systems | Not Present |
| Reverse DNS | server-13-224-68-31.dub2.r.cloudfront.net |
| Domain | netcraft.com |
|---|---|
| Nameserver | ns1.netcraft.com |
| Domain registrar | namecheap.com |
| Nameserver organisation | whois.namecheap.com |
| Organisation | WhoisGuard, Inc., P.O. Box 0823-03411, Panama, Panama |
| DNS admin | hostmaster@netcraft.com |
| Top Level Domain | Commercial entities (.com) |
| DNS Security Extensions | unknown |
| Latest Performance | Performance Graph |
| IP range | Country | Name | Description |
|---|---|---|---|
| 0.0.0.0-255.255.255.255 | N/A | IANA-BLK | The whole IPv4 address space |
| ↳ 13.0.0.0-13.255.255.255 | United States | NET13 | American Registry for Internet Numbers |
| ↳ 13.224.0.0-13.227.255.255 | United States | AMAZO-CF | Amazon.com, Inc. |
| ↳ 13.224.68.31 | United States | AMAZO-CF | Amazon.com, Inc. |
We use multilateration to independently determine the location of a server. Read more.
Enable JavaScript to load IP geolocation data.
| Assurance | Domain validation |
|---|---|
| Common name | www.netcraft.com |
| Organisation | Not Present |
| State | Not Present |
| Country | Not Present |
| Organisational unit | Not Present |
| Subject Alternative Name | www.netcraft.com, www-origin.netcraft.com, www-cdn.netcraft.com, www.netcraft.co.uk, www.netcraft.net |
| Validity period | From Jun 8 2020 to Jul 8 2021 (13 months) |
| Matches hostname | Yes |
| Server | CloudFront |
| Public key algorithm | rsaEncryption |
| Protocol version | TLSv1.2 |
| Public key length | 2048 |
| Certificate check | ok |
| Signature algorithm | sha256WithRSAEncryption |
| Serial number | 0x0afdc7c812c3c1c571585ba522566caf |
| Cipher | ECDHE-RSA-AES128-GCM-SHA256 |
| Version number | 0x02 |
| Perfect Forward Secrecy | Yes |
|---|---|
| Next Protocol Negotiation | Not Present |
| Supported TLS Extensions | RFC4366 server name, RFC4492 EC point formats, RFC5746 renegotiation info, RFC5077 session ticket |
| Issuing organisation | Amazon |
| Issuer common name | Amazon |
| Issuer unit | Server CA 1B |
| Issuer location | Not Present |
| Issuer country | US |
| Issuer state | Not Present |
| Certificate Revocation Lists |
http://crl.sca1b.amazontrust.com/sca1b.crl |
| Certificate Hash | Xli25V6quAGno5r4xceYFTsTcvA |
| Public Key Hash | 31355dc19e2b24695ccc4ed9b7a7f37ac3e7c9a4a35d88796bbb50f4b5e05e5f |
| OCSP servers | http://ocsp.sca1b.amazontrust.com - 100% uptime in the past 24 hours |
| OCSP stapling response | No response received |
Signed Certificate Timestamps (SCTs)
| Source | Log | Timestamp | Signature Verification |
|---|---|---|---|
| Certificate | Google Argon 2021 9lyUL9F3MCIUVBgIMJRWjuNNExkzv98MLyALzE7xZOM= |
2020-06-08 07:29:11 | Success |
| Certificate | DigiCert Yeti 2021 XNxDkv7mq0VEsV6a1FbmEDf71fpH3KFzlLJe5vbHDso= |
2020-06-08 07:29:11 | Success |
SSLv3/POODLE
This site does not support the SSL version 3 protocol.
More information about SSL version 3 and the POODLE vulnerability.
Heartbleed
The site did not offer the Heartbeat TLS extension prior to the Heartbleed disclosure, and so was not exploitable.
This test does not exploit the Heartbleed vulnerability but uses information from conventional HTTPS requests. More information about Heartbleed detection.
| Common name | Amazon Root CA 1 |
|---|---|
| Organisational unit | Not Present |
| Organisation | Amazon |
| Validity period | From 2015-05-26 to 2038-01-17 |
| Common name | Amazon |
|---|---|
| Organisational unit | Server CA 1B |
| Organisation | Amazon |
| Validity period | From 2015-10-22 to 2025-10-19 |
| Netblock owner | IP address | OS | Web server | Last seen |
|---|---|---|---|---|
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 13.224.223.85 | Linux | Apache | 27-Jul-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 52.85.104.73 | Linux | Apache | 18-Jul-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 52.85.104.94 | Linux | Apache | 10-Jul-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 13.227.222.91 | Linux | Apache | 1-Jul-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 13.224.226.85 | Linux | Apache | 23-Jun-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 54.192.137.127 | Linux | Apache | 15-Jun-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 143.204.169.42 | Linux | Apache | 5-Jun-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 13.224.78.112 | Linux | Apache | 29-May-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 13.224.78.3 | Linux | Apache | 20-May-2020 |
| Amazon.com, Inc. 1918 8th Ave SEATTLE WA US 98101-1244 | 13.224.130.86 | Linux | Apache | 12-May-2020 |
A host's Sender Policy Framework (SPF) describes who can send mail on its behalf. This is done by publishing an SPF record containing a series of rules. Each rule consists of a qualifier followed by a specification of which domains to apply this qualifier to. For more information please see open-spf.org.
Warning: It appears that this host does not have an SPF record. There may be an SPF record on netcraft.com: Check the site report.
Setting up an SPF record helps prevent the delivery of forged emails from your domain. Please note that an SPF record will only protect the domain it is added to and not any mail-enabled subdomains. It is recommended to add an SPF record to any subdomain with an MX record.
DMARC (Domain-based Message Authentication, Reporting and Conformance) is a mechanism for domain owners to indicate how mail purporting to originate from their domain should be authenticated. It builds on SPF and DKIM, providing a method to set policy and to give reporting of failures. For more information please see dmarc.org.
This host does not have a DMARC record. There may be a DMARC record on the site report for netcraft.com: Check the site report.
Web Trackers are third-party resources loaded onto a webpage. Trackable resources include social sharing widgets, javascript files, and images. These trackers can be used to monitor individual user behaviour across the web. Data derived from these trackers are primarily used for advertising or analytics purposes.
2 known trackers were identified.| Company | Primary Category | Tracker | Popular Sites with this Tracker |
|---|---|---|---|
| Analytics | Google Analytics | www.bol.com, www.arco.co.uk, www.bom.gov.au | |
| CDN | Googlecdn | www.researchgate.net, www.foxnews.com, www.teamviewer.com |
-
Cloud computing is the use of computing resources (hardware and software) that are delivered as a service over a network (typically the Internet). Platform as a service (PaaS) is a category of cloud computing services that provide a computing platform and a solution stack as a service.
Technology Description Popular sites using this technology Amazon Web Services - CloudFront Amazon Content Delivery Network www.amazon.co.jp, widgets.getpocket.com, login.kataweb.it -
Includes all the main technologies that Netcraft detects as running on the server such as PHP.
-
Includes all the main technologies that run on the browser (such as JavaScript and Adobe Flash).
Technology Description Popular sites using this technology JavaScript Widely-supported programming language commonly used to power client-side dynamic content on websites t.co, disqus.com, teams.microsoft.com -
A content delivery network or content distribution network (CDN) is a large distributed system of servers deployed in multiple data centers in the Internet. The goal of a CDN is to serve content to end-users with high availability and high performance.
Technology Description Popular sites using this technology Cloudfront No description www.deviantart.com, www.amazon.fr, www.primevideo.com -
A content management system (CMS) is a computer program that allows publishing, editing and modifying content as well as maintenance from a central interface.
Technology Description Popular sites using this technology Hugo CMS No description www.zaproxy.org, www.ultrasurfing.com, linuxize.com -
Mobile technology is the technology used for hand held mobile devices.
Technology Description Popular sites using this technology Click to call Markup language syntax intended for devices that can place calls (e.g. phones, VoIP, etc.) www.netflix.com, www.balasai.com, www.digicert.com -
Web analytics is the measurement, collection, analysis and reporting of internet data for purposes of understanding and optimizing web usage.
Technology Description Popular sites using this technology Google Webmaster Tools Set of tools allowing webmasters to check indexing status and optimize visibility of their websites on Google www.bbc.co.uk, www.mozilla.org, www.amazon.ca -
A character encoding system consists of a code that pairs each character from a given repertoire with something else such as a bit pattern, sequence of natural numbers, octets, or electrical pulses in order to facilitate the transmission of data (generally numbers or text) through telecommunication networks or for data storage.
-
Web browser targeting enables software applications to make use of specific functions of the browser as well as optimizing the application for specific browser versions.
Technology Description Popular sites using this technology Strict Transport Security Web security policy mechanism whereby a web server declares that complying user agents are to interact with it using only secure HTTP connections www.linkedin.com, www.paypal.com, www.amazon.com Javascript with SRI No description www.creditkarma.com, signin.blackbaud.com, temp-mail.org X-Content-Type-Options Browser MIME type sniffing is disabled www.googleadservices.com, login.microsoftonline.com, medium.com X-Frame-Options Same Origin Do not allow this site to be rendered within an iframe www.google.com, www.amazon.co.uk, vars.hotjar.com Stylesheet with SRI No description www.pdfdrive.com, codeload.github.com, ads.us.e-planning.net X-XSS-Protection Block Block pages on which cross-site scripting is detected www.pinterest.com, accounts.google.com, discordapp.com -
A Document Type Declaration, or DOCTYPE, is an instruction that associates a particular SGML or XML document (for example, a webpage) with a Document Type Definition (DTD).
-
HTML5 is a markup language for structuring and presenting content for the World Wide Web and a core technology of the Internet. It is the fifth revision of the HTML standard.
Technology Description Popular sites using this technology Viewport meta tag HTML5 tag usually used for mobile optimization www.foxnews.com, login.salesforce.com -
Cascading Style Sheets (CSS) is a style sheet language used for describing the presentation semantics (the look and formatting) of a document written in a markup language (such as XHTML).
Technology Description Popular sites using this technology External Styles defined within an external CSS file www.imdb.com, www.amazon.de, www.microsoft.com