Summary
A Concise Overview of the scan result of url https://dundle.com/?gad_source=1&gbraid=0AAAAABrDgro1as_-eiHLg47Xzzd1vXq3O&gclid=CjwKCAjw65-zBhBkEiwAjrqRMPOUOJef0rCeJlvYaHqkyGVPTdPLUrM8nscXgDv5qkngJ21gc1xSvBoCfAMQAvD_BwE
- Document
- HTML
- 2
- StyleSheets
- 1
- Scripts
- 28
- Font
- 2
- Images
- 33
- Links
- 5
- JavaScript Variables
- 47
- Console log messages
- 0
- Network
- Requests
- 82
- Bytes Transferred
- 1.52MB
- Bytes Total
- 4.66MB
- DNS Record
- A Record
- 2
- AAAA Record
- 2
- Technology
- Programming languages
- 1
- PaaS
- 2
- JavaScript frameworks
- 2
- Payment processors
- 1
- Web frameworks
- 1
- Web servers
- 1
- Static site generator
- 1
- Analytics
- 3
- Security
- 2
- Marketing automation
- 2
- 3
- Cookie compliance
- 1
- Advertising
- 1
- Tag managers
- 1
- CDN
- 2
- Miscellaneous
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
https://play.google.com/store/apps/details?id=com.dundle.app | Download the Dundle app on Google Play |
https://apps.apple.com/nl/app/dundle-prepaid-cards-egifts/id1605958640 | Download the Dundle app on the App Store |
https://play.google.com/store/apps/details?id=com.dundle.app&referrer=utm_source%3Dwebsite%26utm_medium%3Dfooter%26utm_term%3Dapp_campaign%26anid%3Dadmob | |
https://apps.apple.com/app/dundle-prepaid-cards-egifts/id1605958640 | |
https://www.onetrust.com/products/cookie-consent/ | Powered by OneTrust Opens in a new Tab |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Analytics | ||
Sift is a CA-based fraud prevention company. | Type: scriptSrc Regex: cdn\.sift(?:science)?\.com\/s\.js | |
Google Analytics | Google Analytics is a free web analytics service that tracks and reports website traffic. | Type: scriptSrc Regex: googletagmanager\.com\/gtag\/js |
Facebook Pixel | Facebook pixel is an analytics tool that allows you to measure the effectiveness of your advertising. | Type: scriptSrc Regex: connect\.facebook\.\w{1,250}\/.{1,250}\/fbevents\.js |
JavaScript frameworks | ||
Vue.js | Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications. | Dependent on Nuxt.js |
Nuxt.js | Nuxt is a Vue framework for developing modern web applications. | Type: html Regex: <div [^>]{0,250}id="__nuxt" |
Security | ||
Sift is a CA-based fraud prevention company. | Type: scriptSrc Regex: cdn\.sift(?:science)?\.com\/s\.js | |
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Web frameworks | ||
Nuxt.js | Nuxt is a Vue framework for developing modern web applications. | Type: html Regex: <div [^>]{0,250}id="__nuxt" |
Miscellaneous | ||
HTTP/3 | HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web. | Type: headers Name: alt-svc Regex: h3 |
Web servers | ||
Nuxt.js | Nuxt is a Vue framework for developing modern web applications. | Type: html Regex: <div [^>]{0,250}id="__nuxt" |
Programming languages | ||
Node.js | Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser. | Dependent on Nuxt.js |
CDN | ||
Cloudflare | Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services. | Type: headers Name: cf-ray Regex: ^cloudflare$ |
Amazon CloudFront | Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds. | Type: headers Name: via Regex: \(CloudFront\)$ |
Marketing automation | ||
Sendinblue | Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns. | Type: dns Regex: \.sendinblue\.com |
MailChimp | Mailchimp is a marketing automation platform and email marketing service. | Type: dns Regex: spf\.mandrillapp\.com |
Advertising | ||
Microsoft Advertising | Microsoft Advertising is an online advertising platform developed by Microsoft. | Type: scriptSrc Regex: bat\.bing\.com\/bat\.js |
Payment processors | ||
PayPal | PayPal is an online payments system that supports online money transfers and serves as an electronic alternative to traditional paper methods like checks and money orders. | Type: headers Name: content-security-policy Regex: \.paypal\.com |
Tag managers | ||
Google Tag Manager | Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app. | Type: scriptSrc Regex: googletagmanager\.com\/gtm\.js |
Static site generator | ||
Nuxt.js | Nuxt is a Vue framework for developing modern web applications. | Type: html Regex: <div [^>]{0,250}id="__nuxt" |
PaaS | ||
Amazon Web Services | Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. | Dependent on Amazon CloudFront,Amazon SES |
Vercel | Vercel is a cloud platform for static frontends and serverless functions. | Type: headers Name: x-vercel-id Regex: (?:) |
Cookie compliance | ||
OneTrust | OneTrust is a cloud-based data privacy management compliance platform. | Type: scriptSrc Regex: cdn\.cookielaw\.org |
Sendinblue | Sendinblue is an email marketing solution for small and medium-sized businesses that want to send and automate email marketing campaigns. | Type: dns Regex: \.sendinblue\.com |
MailChimp | Mailchimp is a marketing automation platform and email marketing service. | Type: dns Regex: spf\.mandrillapp\.com |
Amazon SES | Amazon Simple Email Service (SES) is an email service that enables developers to send mail from within any application. | Type: dns Regex: amazonses\.com |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 50 msGood
- requestTime
- 71 msGood
- dom
- 490 msPoor
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
A | dundle.com | 104.17.95.30 | no |
A | dundle.com | 104.17.94.30 | no |
AAAA | dundle.com | 2606:4700::6811:5e1e | no |
AAAA | dundle.com | 2606:4700::6811:5f1e | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
dundle.com E1 | 5/23/2024 | 8/21/2024 | 2 months 29 days |
cookielaw.org Cloudflare Inc ECC CA-3 | 3/1/2024 | 12/31/2024 | 10 months 5 days |
cdn.dundle.com Amazon RSA 2048 M02 | 10/23/2023 | 11/20/2024 | 1 year 29 days |
*.gstatic.com GTS CA 1C3 | 5/21/2024 | 8/13/2024 | 2 months 23 days |
onetrust.com Cloudflare Inc ECC CA-3 | 11/13/2023 | 11/12/2024 | 1 year |
*.facebook.com DigiCert SHA2 High Assurance Server CA | 3/21/2024 | 6/19/2024 | 3 months |
*.google-analytics.com GTS CA 1C3 | 5/21/2024 | 8/13/2024 | 2 months 23 days |
sentry.io DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 8/8/2023 | 9/7/2024 | 1 year 1 month 1 day |
*.cloudfront.net Amazon RSA 2048 M01 | 10/10/2023 | 9/19/2024 | 11 months 15 days |
www.bing.com Microsoft Azure TLS Issuing CA 02 | 5/1/2024 | 6/27/2024 | 1 month 27 days |
v2.dundle-api.com DigiCert TLS RSA SHA256 2020 CA1 | 11/4/2023 | 11/4/2024 | 1 year 1 day |
*.siftscience.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 2/5/2024 | 1/19/2025 | 11 months 19 days |
*.hexagon-analytics.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 11/27/2023 | 11/3/2024 | 11 months 12 days |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
alt-svc | h3=":443"; ma=86400 |
cache-control | s-maxage=1808, max-age=0 |
cf-cache-status | MISS |
cf-ray | 892475b3adc799c3-CDG |
content-encoding | br |
content-security-policy | default-src 'self' *.dundle.dev dundle.dev *.dundle.com dundle.com localhost localhost:3002 localhost:3000 *.dinrex.com staging-dundle-api-premium.azurewebsites.net *.dundle-api.com *.fptls3.com *.fptls.com *.doubleclick.net *.openfpcdn.io *.google-analytics.com googleadservices.com *.googleadservices.com *.googlesyndication.com *.bing.com *.clarity.ms sentry.io *.facebook.com *.instagram.com *.braintreegateway.com *.braintree-api.com paypal.com *.paypal.com *.intercom.io translate.google.com *.execute-api.eu-central-1.amazonaws.com recaptcha.net *.recaptcha.net *.analytics.google.com *.google.com *.google.ad *.google.ae *.google.com.af *.google.com.ag *.google.com.ai *.google.al *.google.am *.google.co.ao *.google.com.ar *.google.as *.google.at *.google.com.au *.google.az *.google.ba *.google.com.bd *.google.be *.google.bf *.google.bg *.google.com.bh *.google.bi *.google.bj *.google.com.bn *.google.com.bo *.google.com.br *.google.bs *.google.bt *.google.co.bw *.google.by *.google.com.bz *.google.ca *.google.cd *.google.cf *.google.cg *.google.ch *.google.ci *.google.co.ck *.google.cl *.google.cm *.google.cn *.google.com.co *.google.co.cr *.google.com.cu *.google.cv *.google.com.cy *.google.cz *.google.de *.google.dj *.google.dk *.google.dm *.google.com.do *.google.dz *.google.com.ec *.google.ee *.google.com.eg *.google.es *.google.com.et *.google.fi *.google.com.fj *.google.fm *.google.fr *.google.ga *.google.ge *.google.gg *.google.com.gh *.google.com.gi *.google.gl *.google.gm *.google.gr *.google.com.gt *.google.gy *.google.com.hk *.google.hn *.google.hr *.google.ht *.google.hu *.google.co.id *.google.ie *.google.co.il *.google.im *.google.co.in *.google.iq *.google.is *.google.it *.google.je *.google.com.jm *.google.jo *.google.co.jp *.google.co.ke *.google.com.kh *.google.ki *.google.kg *.google.co.kr *.google.com.kw *.google.kz *.google.la *.google.com.lb *.google.li *.google.lk *.google.co.ls *.google.lt *.google.lu *.google.lv *.google.com.ly *.google.co.ma *.google.md *.google.me *.google.mg *.google.mk *.google.ml *.google.com.mm *.google.mn *.google.ms *.google.com.mt *.google.mu *.google.mv *.google.mw *.google.com.mx *.google.com.my *.google.co.mz *.google.com.na *.google.com.ng *.google.com.ni *.google.ne *.google.nl *.google.no *.google.com.np *.google.nr *.google.nu *.google.co.nz *.google.com.om *.google.com.pa *.google.com.pe *.google.com.pg *.google.com.ph *.google.com.pk *.google.pl *.google.pn *.google.com.pr *.google.ps *.google.pt *.google.com.py *.google.com.qa *.google.ro *.google.ru *.google.rw *.google.com.sa *.google.com.sb *.google.sc *.google.se *.google.com.sg *.google.sh *.google.si *.google.sk *.google.com.sl *.google.sn *.google.so *.google.sm *.google.sr *.google.st *.google.com.sv *.google.td *.google.tg *.google.co.th *.google.com.tj *.google.tl *.google.tm *.google.tn *.google.to *.google.com.tr *.google.tt *.google.com.tw *.google.co.tz *.google.com.ua *.google.co.ug *.google.co.uk *.google.com.uy *.google.co.uz *.google.com.vc *.google.co.ve *.google.vg *.google.co.vi *.google.com.vn *.google.vu *.google.ws *.google.rs *.google.co.za *.google.co.zm *.google.co.zw *.google.cat cookielaw.org *.cookielaw.org *.onetrust.com ws: *.intercom.io; font-src 'self' blob: data: *; frame-ancestors 'self' dundle.dev *.dundle.dev dundle.com *.dundle.com admin.secure.dundle.com; frame-src *.dundle.com *.paypalobjects.com *.paypal.com paypal.com *.facebook.com facebook.com youtube.com *.youtube.com youtu.be *.youtu.be *.googlesyndication.com *.doubleclick.net recaptcha.net *.recaptcha.net; img-src 'self' blob: data: *; script-src 'self' 'self' 'unsafe-inline' 'unsafe-eval' *.dundle.dev dundle.dev *.dundle.com dundle.com localhost *.google-analytics.com *.googletagmanager.com googletagmanager.com *.googleoptimize.com *.doubleclick.net *.google.com googleadservices.com *.googleadservices.com *.googlesyndication.com gstatic.com *.gstatic.com sentry.io *.sentry-cdn.com fpnpmcdn.net *.fptls.com *.fptls3.com *.openfpcdn.io cdn.siftscience.com *.facebook.net *.facebook.com hexagon-analytics.com *.bing.com *.clarity.ms *.cloudfront.net *.braintreegateway.com *.braintree-api.com paypal.com *.paypal.com www.paypalobjects.com *.intercom.io *.intercomcdn.com recaptcha.net *.recaptcha.net *.sift.com/s.js cookielaw.org *.cookielaw.org; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' *.dundle.dev dundle.dev *.dundle.com dundle.com localhost *.google-analytics.com *.googletagmanager.com googletagmanager.com *.googleoptimize.com *.doubleclick.net *.google.com googleadservices.com *.googleadservices.com *.googlesyndication.com gstatic.com *.gstatic.com sentry.io *.sentry-cdn.com fpnpmcdn.net *.fptls.com *.fptls3.com *.openfpcdn.io cdn.siftscience.com *.facebook.net *.facebook.com hexagon-analytics.com *.bing.com *.clarity.ms *.cloudfront.net *.braintreegateway.com *.braintree-api.com paypal.com *.paypal.com www.paypalobjects.com *.intercom.io *.intercomcdn.com recaptcha.net *.recaptcha.net *.sift.com/s.js cookielaw.org *.cookielaw.org; style-src 'self' 'unsafe-inline' *; form-action *; report-uri https://o193536.ingest.sentry.io/api/1296542/security/?sentry_key=fe8919700c6b4ab693fd86fefa14c6cd |
content-type | text/html; charset=utf-8 |
date | Tue, 11 Jun 2024 20:48:03 GMT |
page-cache | 1800 |
server | cloudflare |
strict-transport-security | max-age=15724800; includeSubDomains |
vary | Accept-Encoding |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|---|
default-src | 'self'*.dundle.devdundle.dev*.dundle.comdundle.comlocalhostlocalhost:3002localhost:3000*.dinrex.comstaging-dundle-api-premium.azurewebsites.net*.dundle-api.com*.fptls3.com*.fptls.com*.doubleclick.net*.openfpcdn.io*.google-analytics.comgoogleadservices.com*.googleadservices.com*.googlesyndication.com*.bing.com*.clarity.mssentry.io*.facebook.com*.instagram.com*.braintreegateway.com*.braintree-api.compaypal.com*.paypal.com*.intercom.iotranslate.google.com*.execute-api.eu-central-1.amazonaws.comrecaptcha.net*.recaptcha.net*.analytics.google.com*.google.com*.google.ad*.google.ae*.google.com.af*.google.com.ag*.google.com.ai*.google.al*.google.am*.google.co.ao*.google.com.ar*.google.as*.google.at*.google.com.au*.google.az*.google.ba*.google.com.bd*.google.be*.google.bf*.google.bg*.google.com.bh*.google.bi*.google.bj*.google.com.bn*.google.com.bo*.google.com.br*.google.bs*.google.bt*.google.co.bw*.google.by*.google.com.bz*.google.ca*.google.cd*.google.cf*.google.cg*.google.ch*.google.ci*.google.co.ck*.google.cl*.google.cm*.google.cn*.google.com.co*.google.co.cr*.google.com.cu*.google.cv*.google.com.cy*.google.cz*.google.de*.google.dj*.google.dk*.google.dm*.google.com.do*.google.dz*.google.com.ec*.google.ee*.google.com.eg*.google.es*.google.com.et*.google.fi*.google.com.fj*.google.fm*.google.fr*.google.ga*.google.ge*.google.gg*.google.com.gh*.google.com.gi*.google.gl*.google.gm*.google.gr*.google.com.gt*.google.gy*.google.com.hk*.google.hn*.google.hr*.google.ht*.google.hu*.google.co.id*.google.ie*.google.co.il*.google.im*.google.co.in*.google.iq*.google.is*.google.it*.google.je*.google.com.jm*.google.jo*.google.co.jp*.google.co.ke*.google.com.kh*.google.ki*.google.kg*.google.co.kr*.google.com.kw*.google.kz*.google.la*.google.com.lb*.google.li*.google.lk*.google.co.ls*.google.lt*.google.lu*.google.lv*.google.com.ly*.google.co.ma*.google.md*.google.me*.google.mg*.google.mk*.google.ml*.google.com.mm*.google.mn*.google.ms*.google.com.mt*.google.mu*.google.mv*.google.mw*.google.com.mx*.google.com.my*.google.co.mz*.google.com.na*.google.com.ng*.google.com.ni*.google.ne*.google.nl*.google.no*.google.com.np*.google.nr*.google.nu*.google.co.nz*.google.com.om*.google.com.pa*.google.com.pe*.google.com.pg*.google.com.ph*.google.com.pk*.google.pl*.google.pn*.google.com.pr*.google.ps*.google.pt*.google.com.py*.google.com.qa*.google.ro*.google.ru*.google.rw*.google.com.sa*.google.com.sb*.google.sc*.google.se*.google.com.sg*.google.sh*.google.si*.google.sk*.google.com.sl*.google.sn*.google.so*.google.sm*.google.sr*.google.st*.google.com.sv*.google.td*.google.tg*.google.co.th*.google.com.tj*.google.tl*.google.tm*.google.tn*.google.to*.google.com.tr*.google.tt*.google.com.tw*.google.co.tz*.google.com.ua*.google.co.ug*.google.co.uk*.google.com.uy*.google.co.uz*.google.com.vc*.google.co.ve*.google.vg*.google.co.vi*.google.com.vn*.google.vu*.google.ws*.google.rs*.google.co.za*.google.co.zm*.google.co.zw*.google.catcookielaw.org*.cookielaw.org*.onetrust.comws:*.intercom.io |
font-src | 'self'blob:data:* |
frame-ancestors | 'self'dundle.dev*.dundle.devdundle.com*.dundle.comadmin.secure.dundle.com |
frame-src | *.dundle.com*.paypalobjects.com*.paypal.compaypal.com*.facebook.comfacebook.comyoutube.com*.youtube.comyoutu.be*.youtu.be*.googlesyndication.com*.doubleclick.netrecaptcha.net*.recaptcha.net |
img-src | 'self'blob:data:* |
script-src | 'self''self''unsafe-inline''unsafe-eval'*.dundle.devdundle.dev*.dundle.comdundle.comlocalhost*.google-analytics.com*.googletagmanager.comgoogletagmanager.com*.googleoptimize.com*.doubleclick.net*.google.comgoogleadservices.com*.googleadservices.com*.googlesyndication.comgstatic.com*.gstatic.comsentry.io*.sentry-cdn.comfpnpmcdn.net*.fptls.com*.fptls3.com*.openfpcdn.iocdn.siftscience.com*.facebook.net*.facebook.comhexagon-analytics.com*.bing.com*.clarity.ms*.cloudfront.net*.braintreegateway.com*.braintree-api.compaypal.com*.paypal.comwww.paypalobjects.com*.intercom.io*.intercomcdn.comrecaptcha.net*.recaptcha.net*.sift.com/s.jscookielaw.org*.cookielaw.org |
script-src-elem | 'self''unsafe-inline''unsafe-eval'*.dundle.devdundle.dev*.dundle.comdundle.comlocalhost*.google-analytics.com*.googletagmanager.comgoogletagmanager.com*.googleoptimize.com*.doubleclick.net*.google.comgoogleadservices.com*.googleadservices.com*.googlesyndication.comgstatic.com*.gstatic.comsentry.io*.sentry-cdn.comfpnpmcdn.net*.fptls.com*.fptls3.com*.openfpcdn.iocdn.siftscience.com*.facebook.net*.facebook.comhexagon-analytics.com*.bing.com*.clarity.ms*.cloudfront.net*.braintreegateway.com*.braintree-api.compaypal.com*.paypal.comwww.paypalobjects.com*.intercom.io*.intercomcdn.comrecaptcha.net*.recaptcha.net*.sift.com/s.jscookielaw.org*.cookielaw.org |
style-src | 'self''unsafe-inline'* |
form-action | * |
report-uri | https://o193536.ingest.sentry.io/api/1296542/security/?sentry_key=fe8919700c6b4ab693fd86fefa14c6c |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
__cf_bm | buIwVK3teXNSOao0e1lkZbcI_DcyYgCRQ7b0FM7CAT0-1718138883-1.0.1.1-uQ3D74H35jd4zh_iyJ6aRd4ownrZdqU8.i3RDdxAeYBY4NHHDTLaWVX977n3lhgkRsLsBqTaZQXdHkLmz88S4A | .dundle.com/ | 6/11/2024, 9:18:03 PM | yes | yes |
OptanonConsent | isGpcEnabled=0&datestamp=Tue+Jun+11+2024+20%3A48%3A04+GMT%2B0000+(Coordinated+Universal+Time)&version=202403.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=4a5c36eb-0bd0-4961-91a6-7e5e49d64aaf&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fdundle.com%2F%3Fgad_source%3D1%26gbraid%3D0AAAAABrDgro1as_-eiHLg47Xzzd1vXq3O%26gclid%3DCjwKCAjw65-zBhBkEiwAjrqRMPOUOJef0rCeJlvYaHqkyGVPTdPLUrM8nscXgDv5qkngJ21gc1xSvBoCfAMQAvD_BwE&groups=C0001%3A1%2CC0002%3A0%2CC0004%3A0%2CC0003%3A1 | .dundle.com/ | 6/11/2025, 8:48:04 PM | no | no |