Stripe | Financial Infrastructure to Grow Your Revenue - URL Scan Results

Summary

A Concise Overview of the scan result of url https://stripe.com/en-es

Document
HTML
7
StyleSheets
90
Scripts
130
Font
2
Images
7
Links
1
JavaScript Variables
33
Console log messages
0
Network
Requests
242
Bytes Transferred
931.36KB
Bytes Total
2.83MB

DNS Record
A Record
1
Technology
CMS
1
Webmail
1
Search engines
1
UI frameworks
1
PaaS
1
Payment processors
1
Web servers
1
Reverse proxies
1
Security
1
SSL/TLS certificate authorities
1
CDN
1
Miscellaneous
1

Links

The outgoing links identified from the page.

Link	Text
https://github.com/stripe-samples	Code samples

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

0string1string2string3stringdocumentPictureInPicturestringonbeforetogglestringonscrollendstring__capturedErrorsstring__extendsstring__assignstring__reststring__decoratestring__paramstring__metadatastring__awaiterstring__generatorstring__exportStarstring__createBindingstring__valuesstring__readstring__spreadstring__spreadArraysstring__awaitstring__asyncGeneratorstring__asyncDelegatorstring__asyncValuesstring__makeTemplateObjectstring__importStarstring__importDefaultstring__classPrivateFieldGetstring__classPrivateFieldSetstring__SENTRY__stringDeprecatedAnalyticsReporterstring

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
CMS
Contentful https://www.contentful.com	Contentful is an API-first content management platform to create, manage and publish content on any digital channel.	Type: html Regex: <[^>]{1,250}(?:assets\|downloads\|images\|videos)\.(?:ct?fassets\.net\|contentful\.com)
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)
Miscellaneous
DocuSign https://www.docusign.com	DocuSign allows organisations to manage electronic agreements.	Type: dns Regex: docusign
Web servers
Nginx https://nginx.org/en	Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.	Type: headers Name: server Regex: nginx(?:\/([\d.]{1,250}))?
Search engines
Algolia https://www.algolia.com	Algolia offers a hosted web search product delivering real-time results.	Type: headers Name: content-security-policy Regex: \.algolia
Webmail
Apple iCloud Mail https://www.apple.com/icloud/	Apple iCloud Mail is a webmail service provided by Apple, Inc.	Type: dns Regex: apple-domain
CDN
Amazon S3 https://aws.amazon.com/s3/	Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.	Type: headers Name: server Regex: s3[^ ]{0,250}amazonaws\.com
Payment processors
Stripe https://stripe.com	Stripe offers online payment processing for internet businesses as well as fraud prevention, invoicing and subscription management.	Type: dns Regex: stripe-verification=
PaaS
Amazon Web Services https://aws.amazon.com/	Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.	Dependent on Amazon S3
Reverse proxies
Nginx https://nginx.org/en	Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.	Type: headers Name: server Regex: nginx(?:\/([\d.]{1,250}))?
UI frameworks
Bootstrap https://getbootstrap.com	Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.	Type: scriptSrc Regex: bootstrap(?:[^>]{0,250}?([0-9a-fA-F]{7,40}\|[\d]{1,250}(?:.[\d]{1,250}(?:.[\d]{1,250})?)?)\|)[^>]{0,250}?(?:\.min)?\.js
SSL/TLS certificate authorities
DigiCert https://www.digicert.com/		Type: certIssuer Regex: DigiCert

Type	Name	Content	DNSSEC
A	stripe.com	198.202.176.141	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
stripe.com DigiCert TLS Hybrid ECC SHA384 2020 CA1	6/20/2024	9/19/2024	3 months 1 day
a.stripecdn.com DigiCert SHA2 Extended Validation Server CA	7/23/2024	10/24/2024	3 months 3 days
images.ctfassets.net Amazon RSA 2048 M02	12/19/2023	1/16/2025	1 year 29 days
assets.ctfassets.net Amazon RSA 2048 M03	12/18/2023	1/14/2025	1 year 28 days
*.stripe.com DigiCert TLS Hybrid ECC SHA384 2020 CA1	7/15/2024	10/10/2024	2 months 27 days

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
content-encoding	gzip
content-security-policy	report-uri /csp-report?p=; block-all-mixed-content; default-src 'none'; base-uri 'none'; img-src 'self' https://b.stripecdn.com https://q.stripe.com https://stripe-camo.global.ssl.fastly.net https://images.ctfassets.net https://images.stripeassets.com https://assets.ctfassets.net https://assets.stripeassets.com data:; style-src 'unsafe-inline' 'self' https://b.stripecdn.com; connect-src 'self' https://stripe.com blob: https://stripe-images.s3.us-west-1.amazonaws.com https://errors.stripe.com https://b.stripecdn.com https://climate.stripe.com https://ext.stripe.com https://r.stripe.com https://c.increment.com https://c.stripe.dev https://c.stripe.global https://c.stripe.partners https://sales-live-chat.stripe.com https://y4pfttj91h-dsn.algolia.net/1/indexes/mkt_partners/query https://y4pfttj91h-1.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-2.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-3.algolianet.com/1/indexes/mkt_partners/query; font-src 'self' https://b.stripecdn.com; form-action 'self' https://stripe.com https://climate.stripe.com; frame-src 'self' https://js.stripe.com https://b.stripecdn.com https://crypto-js.stripe.com https://sales-live-chat.stripe.com https://checkout.stripe.com https://checkout.stripe.dev https://register.stripesessions.com; media-src 'self' https://b.stripecdn.com https://videos.ctfassets.net https://videos.stripeassets.com https://assets.ctfassets.net https://assets.stripeassets.com; script-src 'self' https://js.stripe.com 'sha256-vTifGUJH6hJYTvstw4xJ4xfr/vE0ELkOV4GpCumyqfg=' 'sha256-cCM0Z4lzGkzQnmbdVw+ouz0JRawyaKcZ4yiqzqYS7ek=' 'sha256-5LtzXhT7UFn+GqP5pKEMGL08UNZsrzANHFEBW/mQHGw=' 'sha256-3aWvb9tRBjmz1OjR3n7mwiTm94+s4iki4mMZF82asmc=' 'sha256-beLzNcen8LrazzSCRjAapoIMTgJI0osPWGNSX7aK6lc=' https://b.stripecdn.com https://crypto-js.stripe.com 'report-sample'; frame-ancestors 'self' https://app.contentful.com
content-security-policy-report-only	report-uri /csp-report?p=; block-all-mixed-content; default-src 'none'; base-uri 'none'; img-src 'self' https://b.stripecdn.com https://q.stripe.com https://stripe-camo.global.ssl.fastly.net https://images.ctfassets.net https://images.stripeassets.com https://assets.ctfassets.net https://assets.stripeassets.com data:; style-src 'unsafe-inline' 'self' https://b.stripecdn.com; connect-src 'self' https://stripe.com blob: https://stripe-images.s3.us-west-1.amazonaws.com https://errors.stripe.com https://b.stripecdn.com https://climate.stripe.com https://ext.stripe.com https://r.stripe.com https://c.increment.com https://c.stripe.dev https://c.stripe.global https://c.stripe.partners https://sales-live-chat.stripe.com https://y4pfttj91h-dsn.algolia.net/1/indexes/mkt_partners/query https://y4pfttj91h-1.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-2.algolianet.com/1/indexes/mkt_partners/query https://y4pfttj91h-3.algolianet.com/1/indexes/mkt_partners/query; font-src 'self' https://b.stripecdn.com; form-action 'self' https://stripe.com https://climate.stripe.com; frame-src 'self' https://js.stripe.com https://b.stripecdn.com https://crypto-js.stripe.com https://sales-live-chat.stripe.com https://checkout.stripe.com https://checkout.stripe.dev https://register.stripesessions.com; media-src 'self' https://b.stripecdn.com https://videos.ctfassets.net https://videos.stripeassets.com https://assets.ctfassets.net https://assets.stripeassets.com; script-src 'self' https://js.stripe.com 'sha256-vTifGUJH6hJYTvstw4xJ4xfr/vE0ELkOV4GpCumyqfg=' 'sha256-cCM0Z4lzGkzQnmbdVw+ouz0JRawyaKcZ4yiqzqYS7ek=' 'sha256-5LtzXhT7UFn+GqP5pKEMGL08UNZsrzANHFEBW/mQHGw=' 'sha256-3aWvb9tRBjmz1OjR3n7mwiTm94+s4iki4mMZF82asmc=' 'sha256-beLzNcen8LrazzSCRjAapoIMTgJI0osPWGNSX7aK6lc=' https://b.stripecdn.com https://crypto-js.stripe.com 'report-sample'; frame-ancestors 'self' https://app.contentful.com
content-type	text/html; charset=utf-8
cross-origin-opener-policy-report-only	same-origin; report-to="coop"
date	Fri, 02 Aug 2024 12:46:51 GMT
report-to	{"group":"coop","max_age":8640,"endpoints":[{"url":"https://q.stripe.com/coop-report?s=mkt-srv"}],"include_subdomains":true}
reporting-endpoints	coop="https://q.stripe.com/coop-report?s=mkt-srv"
server	nginx
strict-transport-security	max-age=63072000; includeSubDomains; preload
x-content-type-options	nosniff
x-frame-options	SAMEORIGIN
x-mkt-cache	HIT
x-stripe-routing-context-override-upstream-bg-target-side-mkt-srv	blue

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value
report-uri	/csp-report?p=
block-all-mixed-content
default-src	'none'
base-uri	'none'
img-src	'self'https://b.stripecdn.comhttps://q.stripe.comhttps://stripe-camo.global.ssl.fastly.nethttps://images.ctfassets.nethttps://images.stripeassets.comhttps://assets.ctfassets.nethttps://assets.stripeassets.comdata:
style-src	'unsafe-inline''self'https://b.stripecdn.com
connect-src	'self'https://stripe.comblob:https://stripe-images.s3.us-west-1.amazonaws.comhttps://errors.stripe.comhttps://b.stripecdn.comhttps://climate.stripe.comhttps://ext.stripe.comhttps://r.stripe.comhttps://c.increment.comhttps://c.stripe.devhttps://c.stripe.globalhttps://c.stripe.partnershttps://sales-live-chat.stripe.comhttps://y4pfttj91h-dsn.algolia.net/1/indexes/mkt_partners/queryhttps://y4pfttj91h-1.algolianet.com/1/indexes/mkt_partners/queryhttps://y4pfttj91h-2.algolianet.com/1/indexes/mkt_partners/queryhttps://y4pfttj91h-3.algolianet.com/1/indexes/mkt_partners/query
font-src	'self'https://b.stripecdn.com
form-action	'self'https://stripe.comhttps://climate.stripe.com
frame-src	'self'https://js.stripe.comhttps://b.stripecdn.comhttps://crypto-js.stripe.comhttps://sales-live-chat.stripe.comhttps://checkout.stripe.comhttps://checkout.stripe.devhttps://register.stripesessions.com
media-src	'self'https://b.stripecdn.comhttps://videos.ctfassets.nethttps://videos.stripeassets.comhttps://assets.ctfassets.nethttps://assets.stripeassets.com
script-src	'self'https://js.stripe.com'sha256-vTifGUJH6hJYTvstw4xJ4xfr/vE0ELkOV4GpCumyqfg=''sha256-cCM0Z4lzGkzQnmbdVw+ouz0JRawyaKcZ4yiqzqYS7ek=''sha256-5LtzXhT7UFn+GqP5pKEMGL08UNZsrzANHFEBW/mQHGw=''sha256-3aWvb9tRBjmz1OjR3n7mwiTm94+s4iki4mMZF82asmc=''sha256-beLzNcen8LrazzSCRjAapoIMTgJI0osPWGNSX7aK6lc='https://b.stripecdn.comhttps://crypto-js.stripe.com'report-sample'
frame-ancestors	'self'https://app.contentful.co

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
path	/	stripe.com/	12/31/1969, 11:59:59 PM	yes	yes
__Host-stripe.mkt.csrf	3exZtJLBfSUIT5OxH0LRXvw824oDKf4Sdz0kVoE2Q4BcaZ6KDSEYlmWWo8rGq95JwGqK0qycd7q2txkxeXKDwDw-AcAXe4bKkDHfleY03ZJOphiXL4-7CamxXYgxW2eyaSISXd61Xg%3D%3D	stripe.com/	12/31/1969, 11:59:59 PM	yes	yes

URL Scan Results for the page [Stripe | Financial Infrastructure to Grow Your Revenue](https://stripe.com/en-es)

URL basic Information and screenshot

Summary

Document