URL Scan Results for https://www.tapp.cl/

Summary

A Concise Overview of the scan result of url https://www.tapp.cl/

Document
HTML
4
StyleSheets
5
Scripts
21
Font
4
Images
51
Links
17
JavaScript Variables
71
Console log messages
0
Network
Requests
100
Bytes Transferred
3.81MB
Bytes Total
6.03MB

DNS Record
CNAME Record
4
A Record
2
Technology
PaaS
1
Analytics
4
A/B Testing
1
Advertising
1
Security
1
Tag managers
1
Personalisation
1
Marketing automation
1
CDN
1

Links

The outgoing links identified from the page.

Link	Text
https://web.cajalosandes.cl/wp-tapp/beneficios	Beneficios y Descuentos Beneficios y Descuentos
https://web.cajalosandes.cl/wp-tapp/nuestro-sello	Nuestro Sello Nuestro Sello
https://web.cajalosandes.cl/wp-tapp/ayuda	Ayuda Ayuda
https://tapp.onelink.me/K6u1/mkw7cs5c	Descarga la App
javascript:void(0);	Descarga Tapp DESCARGA TAPP
https://play.google.com/store/apps/details?id=cl.tapp&hl=es_CL&gl=US	Descarga Tapp en Google Play
https://apps.apple.com/cl/app/tapp-caja-los-andes/id1578548929	Descarga Tapp en la App Store
tel:600 77 000 77	600 77 000 77
tel:800 77 00 77	800 77 00 77
https://d3n49d7reyrlg2.cloudfront.net/uploads/c3b469d6-5cd7-4bfd-afc3-ce31c70691a6/original/Ley_fraude_segundo_semestre_2023.pdf	Ley de fraude Ley de fraude
https://d3n49d7reyrlg2.cloudfront.net/uploads/59118131-6e01-48f3-8cad-3ac42002a13e/original/codigo_buenas_practicas_tapp.pdf	Código de buenas prácticas Código de buenas prácticas
https://www.facebook.com/TappChile/	Facebook
https://twitter.com/tapp_cl?lang=en	Twitter
https://www.instagram.com/tappchile/	Instagram
https://www.cmfchile.cl/portal/principal/613/w3-channel.html	Comisión del Mercado Financiero
https://www.cajalosandes.cl/home_personas	Caja Los Andes
https://www.cmfchile.cl	www.cmfchile.cl

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

0stringonbeforetogglestringonscrollendstringdataLayerstringdocReadystring_slicedToArraystringunescapeHTMLCookiestringgetMessagesFromCookiesstringmenuDesktopstringdownloadTappModalstringcloseTappModalstringcsrf_tokenstringcsrf_paramstringUniversalCookiestringuidEventstringbootstrapstringWOWstringWebFontstringAgregarZapierstringvalidaFormulariostringenviarFormulariostringcodestring_vwo_codestring_vwo_settings_timerstringtnsIdstringcbstringgoogle_tag_managerstringgoogle_tag_datastringGoogleAnalyticsObjectstringgastringfbqstring_fbqstringclaritystringTiktokAnalyticsObjectstringttqstring_vwo_j_estring_vwo_mtstring_vwo_tmstring_vwo_cookieDomainstring_vwo_acc_idstringVWOstringvwo_iehack_queuestringgapluginsstringgaGlobalstringgaDatastringUETstringUET_initstringUET_pushstringonYouTubeIframeAPIReadystringueto_2195ccc4c5stringuetqstringgetOffsetstringgetAbsoluteHeightstringcardstringcontainerstringcardTopstringcardBottomstringstartCardstringendCardstringcardTappstringSIGNAL_TYPEstringtnsstringsliderstringconnectifstringinitializeConnectifstringconnectifConfigurationstringJSBridgestringNative2JSBridgestringToutiaoJSBridgestringTiktokJellystring_jelly_sdksstring

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
Analytics
VWO https://vwo.com	VWO is a website testing and conversion optimisation platform.	Type: scriptSrc Regex: dev\.visualwebsiteoptimizer\.com\/
Microsoft Clarity https://clarity.microsoft.com	Microsoft's Clarity is a analytics tool which provides website usage statistics, session recording, and heatmaps.	Type: scriptSrc Regex: www\.clarity\.ms\/.{1,250}\/([\d.]{1,250})\/clarity\.js
Google Analytics https://google.com/analytics	Google Analytics is a free web analytics service that tracks and reports website traffic.	Type: scriptSrc Regex: googletagmanager\.com\/gtag\/js
Facebook Pixel https://facebook.com	Facebook pixel is an analytics tool that allows you to measure the effectiveness of your advertising.	Type: scriptSrc Regex: connect\.facebook\.\w{1,250}\/.{1,250}\/fbevents\.js
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)
CDN
Amazon S3 https://aws.amazon.com/s3/	Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.	Type: headers Name: content-security-policy Regex: s3[^ ]{0,250}amazonaws\.com
Marketing automation
Connectif https://connectif.ai	Connectif is a marketing automation and personalisation data-first action platform, powered by AI.	Type: scriptSrc Regex: cdn\.connectif\.cloud\/
Advertising
Microsoft Advertising https://ads.microsoft.com	Microsoft Advertising is an online advertising platform developed by Microsoft.	Type: scriptSrc Regex: bat\.bing\.com\/bat\.js
Tag managers
Google Tag Manager https://www.google.com/tagmanager	Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.	Type: html Regex: <!-- (?:End )?Google Tag Manager -->
PaaS
Amazon Web Services https://aws.amazon.com/	Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.	Dependent on Amazon S3
A/B Testing
VWO https://vwo.com	VWO is a website testing and conversion optimisation platform.	Type: scriptSrc Regex: dev\.visualwebsiteoptimizer\.com\/
Personalisation
Connectif https://connectif.ai	Connectif is a marketing automation and personalisation data-first action platform, powered by AI.	Type: scriptSrc Regex: cdn\.connectif\.cloud\/

DNS Record

A DNS record maps a domain name to an IP address or other resource information.

Type	Name	Content	DNSSEC
CNAME	www.tapp.cl	cla-access.modyo.com.	no
CNAME	cla-access.modyo.com	cla-production-alb-ext-1459164447.us-east-1.elb.amazonaws.com.	no
A	cla-production-alb-ext-1459164447.us-east-1.elb.amazonaws.com	3.230.192.236	no
A	cla-production-alb-ext-1459164447.us-east-1.elb.amazonaws.com	3.226.189.142	no
CNAME	www.tapp.cl	cla-access.modyo.com.	no
CNAME	cla-access.modyo.com	cla-production-alb-ext-1459164447.us-east-1.elb.amazonaws.com.	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
*.tapp.cl GoGetSSL RSA DV CA	5/7/2024	6/7/2025	1 year 1 month 1 day
upload.video.google.com GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
*.visualwebsiteoptimizer.com Starfield Secure Certificate Authority - G2	7/6/2023	7/6/2024	1 year 1 day
*.cloudfront.net Amazon RSA 2048 M01	10/10/2023	9/19/2024	11 months 15 days
*.google-analytics.com GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
*.gstatic.com GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
www.bing.com Microsoft Azure TLS Issuing CA 02	5/1/2024	6/27/2024	1 month 27 days
*.facebook.com DigiCert SHA2 High Assurance Server CA	3/21/2024	6/19/2024	3 months
www.clarity.ms DigiCert TLS RSA SHA256 2020 CA1	12/7/2023	12/7/2024	1 year 1 day
*.tiktok.com RapidSSL ECC CA 2018	7/14/2023	8/13/2024	1 year 1 month 1 day
cdn.connectif.cloud DigiCert TLS RSA SHA256 2020 CA1	12/6/2023	12/6/2024	1 year 1 day
*.g.doubleclick.net GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
tracker.connectif.cloud DigiCert TLS RSA SHA256 2020 CA1	12/6/2023	12/6/2024	1 year 1 day
www.google.com GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
a.clarity.ms Microsoft Azure TLS Issuing CA 01	1/14/2024	6/27/2024	5 months 15 days
c.msn.com Microsoft Azure RSA TLS Issuing CA 07	2/27/2024	2/21/2025	12 months
*.connectif.cloud Sectigo RSA Domain Validation Secure Server CA	6/13/2023	7/12/2024	1 year 1 month

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
cache-control	public, no-cache
content-encoding	gzip
content-security-policy	default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: data: https://d3n49d7reyrlg2.cloudfront.net https://www.google.cl/ads/ https://s.clarity.ms/collect https://.clarity.ms/collect https://d3n49d7reyrlg2.cloudfront.net https://www.w3schools.com https://cloud.modyocdn.com https://www.googletagmanager.com https://www.google-analytics.com https://static.hotjar.com https://script.hotjar.com https://vc.hotjar.io https://www.youtube.com https://fonts.googleapis.com https://cla-design-system.s3.us-east-2.amazonaws.com https://fonts.gstatic.com https://unpkg.com/[email protected]/dist/leaflet.css https://unpkg.com/[email protected]/dist/ https://.tile.openstreetmap.org https://www.google.com https://storage.googleapis.com https://analytics.google.com https://stats.g.doubleclick.net https://www.googleoptimize.com https://analytics.tiktok.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://x.clarity.ms/collect https://cdn.appdynamics.com/adrum/adrum-latest.js https://cdn.appdynamics.com/adrum-ext..js https://cdn.appdynamics.com/adrum-ext.bf71fe39e20d2aa8ad53d37ab6377745.js https://cdn.appdynamics.com/adrum/adrum-23.3.0.4265.js https://pdx-col.eum-appdynamics.com/ https://pdx-col.eum-appdynamics.com/eumcollector/beacons/browser/v1/AD-AAB-ACD-VZZ/adrum https://col.eum-appdynamics.com/eumcollector/beacons/browser/v1/AD-AAB-AAN-WTT/adrum https://col.eum-appdynamics.com https://cdn.appdynamics.com/ https://js-agent.newrelic.com/ https://www.tapp.cl/ https://web.cajalosandes.cl/ https://bat.bing.com/bat.js https://cdn.connectif.cloud https://bam.nr-data.net https://tracker.connectif.cloud https://bat.bing.com/p/action/ https://bat.bing.com/action/ https://eu4-api.connectif.cloud https://optimize.google.com https://fonts.gstatic.com https://fonts.googleapis.com https://www.googleanalytics.com https://www.clarity.ms https://c.bing.com https://.clarity.ms https://.visualwebsiteoptimizer.com https://app.vwo.com https://s3.amazonaws.com https://chart.googleapis.com https://wingify-assets.s3.amazonaws.com https://.zapier.com https://hooks.zapier.com
content-type	text/html; charset=utf-8
date	Tue, 11 Jun 2024 20:22:58 GMT
etag	W/"d4f72244ed3c9492cf0e58d28c8957a6"
referrer-policy	no-referrer-when-downgrade
strict-transport-security	max-age=31536000; preload; includeSubDomains
surrogate-control	max-age=31556952
vary	Accept-Encoding
x-cache-status	HIT
x-download-options	noopen
x-frame-options	DENY
x-permitted-cross-domain-policies	none
x-request-id	6c8c7757-3486-4b4b-a532-a56063be7314
x-xss-protection	0

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value
default-src	'self''unsafe-eval''unsafe-inline'blob:data:https://d3n49d7reyrlg2.cloudfront.nethttps://www.google.cl/ads/https://s.clarity.ms/collecthttps://.clarity.ms/collecthttps://d3n49d7reyrlg2.cloudfront.nethttps://www.w3schools.comhttps://cloud.modyocdn.comhttps://www.googletagmanager.comhttps://www.google-analytics.comhttps://static.hotjar.comhttps://script.hotjar.comhttps://vc.hotjar.iohttps://www.youtube.comhttps://fonts.googleapis.comhttps://cla-design-system.s3.us-east-2.amazonaws.comhttps://fonts.gstatic.comhttps://unpkg.com/[email protected]/dist/leaflet.csshttps://unpkg.com/[email protected]/dist/https://.tile.openstreetmap.orghttps://www.google.comhttps://storage.googleapis.comhttps://analytics.google.comhttps://stats.g.doubleclick.nethttps://www.googleoptimize.comhttps://analytics.tiktok.comhttps://www.clarity.mshttps://connect.facebook.nethttps://www.facebook.comhttps://x.clarity.ms/collecthttps://cdn.appdynamics.com/adrum/adrum-latest.jshttps://cdn.appdynamics.com/adrum-ext..jshttps://cdn.appdynamics.com/adrum-ext.bf71fe39e20d2aa8ad53d37ab6377745.jshttps://cdn.appdynamics.com/adrum/adrum-23.3.0.4265.jshttps://pdx-col.eum-appdynamics.com/https://pdx-col.eum-appdynamics.com/eumcollector/beacons/browser/v1/AD-AAB-ACD-VZZ/adrumhttps://col.eum-appdynamics.com/eumcollector/beacons/browser/v1/AD-AAB-AAN-WTT/adrumhttps://col.eum-appdynamics.comhttps://cdn.appdynamics.com/https://js-agent.newrelic.com/https://www.tapp.cl/https://web.cajalosandes.cl/https://bat.bing.com/bat.jshttps://cdn.connectif.cloudhttps://bam.nr-data.nethttps://tracker.connectif.cloudhttps://bat.bing.com/p/action/https://bat.bing.com/action/https://eu4-api.connectif.cloudhttps://optimize.google.comhttps://fonts.gstatic.comhttps://fonts.googleapis.comhttps://www.googleanalytics.comhttps://www.clarity.mshttps://c.bing.comhttps://.clarity.mshttps://.visualwebsiteoptimizer.comhttps://app.vwo.comhttps://s3.amazonaws.comhttps://chart.googleapis.comhttps://wingify-assets.s3.amazonaws.comhttps://.zapier.comhttps://hooks.zapier.co

Name

Value

default-src

'self''unsafe-eval''unsafe-inline'blob:data:https://d3n49d7reyrlg2.cloudfront.nethttps://www.google.cl/ads/https://s.clarity.ms/collecthttps://*.clarity.ms/collecthttps://d3n49d7reyrlg2.cloudfront.nethttps://www.w3schools.comhttps://cloud.modyocdn.comhttps://www.googletagmanager.comhttps://www.google-analytics.comhttps://static.hotjar.comhttps://script.hotjar.comhttps://vc.hotjar.iohttps://www.youtube.comhttps://fonts.googleapis.comhttps://cla-design-system.s3.us-east-2.amazonaws.comhttps://fonts.gstatic.comhttps://unpkg.com/[email protected]/dist/leaflet.csshttps://unpkg.com/[email protected]/dist/https://*.tile.openstreetmap.orghttps://www.google.comhttps://storage.googleapis.comhttps://analytics.google.comhttps://stats.g.doubleclick.nethttps://www.googleoptimize.comhttps://analytics.tiktok.comhttps://www.clarity.mshttps://connect.facebook.nethttps://www.facebook.comhttps://x.clarity.ms/collecthttps://cdn.appdynamics.com/adrum/adrum-latest.jshttps://cdn.appdynamics.com/adrum-ext.*.jshttps://cdn.appdynamics.com/adrum-ext.bf71fe39e20d2aa8ad53d37ab6377745.jshttps://cdn.appdynamics.com/adrum/adrum-23.3.0.4265.jshttps://pdx-col.eum-appdynamics.com/https://pdx-col.eum-appdynamics.com/eumcollector/beacons/browser/v1/AD-AAB-ACD-VZZ/adrumhttps://col.eum-appdynamics.com/eumcollector/beacons/browser/v1/AD-AAB-AAN-WTT/adrumhttps://col.eum-appdynamics.comhttps://cdn.appdynamics.com/https://js-agent.newrelic.com/https://www.tapp.cl/https://web.cajalosandes.cl/https://bat.bing.com/bat.jshttps://cdn.connectif.cloudhttps://bam.nr-data.nethttps://tracker.connectif.cloudhttps://bat.bing.com/p/action/https://bat.bing.com/action/https://eu4-api.connectif.cloudhttps://optimize.google.comhttps://fonts.gstatic.comhttps://fonts.googleapis.comhttps://www.googleanalytics.comhttps://www.clarity.mshttps://c.bing.comhttps://*.clarity.mshttps://*.visualwebsiteoptimizer.comhttps://app.vwo.comhttps://s3.amazonaws.comhttps://chart.googleapis.comhttps://wingify-assets.s3.amazonaws.comhttps://*.zapier.comhttps://hooks.zapier.co

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
_vwo_uuid_v2	D382112F943046B37CDCD95995B085F35\|51125699b50ca0a2f33d00d798e49fa3	.tapp.cl/	6/12/2025, 8:22:59 PM	no	no
CLID	ce553fb463a34ad9a44565b68df8d35e.20240611.20250611	www.clarity.ms/	6/11/2025, 8:22:59 PM	yes	yes
_ttp	2hkU4i5RluO5EfQgblvoI6x4pw8	.tiktok.com/	7/6/2025, 8:22:59 PM	yes	no
_gid	GA1.2.1984766210.1718137380	.tapp.cl/	6/12/2024, 8:22:59 PM	no	no
_gat_UA-39200502-1	1	.tapp.cl/	6/11/2024, 8:23:59 PM	no	no
_ga_3D933S04ZX	GS1.1.1718137380.1.0.1718137380.60.0.0	.tapp.cl/	7/16/2025, 8:23:00 PM	no	no
_ga	GA1.1.873875284.1718137380	.tapp.cl/	7/16/2025, 8:23:00 PM	no	no
_uetsid	65d11040283011efb83b1f9c0bc089ab	.tapp.cl/	6/12/2024, 8:23:00 PM	no	no
_uetvid	65d36040283011ef968ce349dd21c4c7	.tapp.cl/	7/6/2025, 8:23:00 PM	no	no
_fbp	fb.1.1718137380522.70045283288312137	.tapp.cl/	9/9/2024, 8:23:00 PM	no	no
_clck	1cfnhd2%7C2%7Cfmj%7C0%7C1623	.tapp.cl/	6/11/2025, 8:23:00 PM	no	no
_tt_enable_cookie	1	.tapp.cl/	7/6/2025, 8:23:00 PM	no	no
_ttp	wgW0ApXbPG5LcYw9fuquhwLr5d7	.tapp.cl/	7/6/2025, 8:23:00 PM	no	no
_ga_KGK2Y2R96S	GS1.2.1718137380.1.0.1718137380.60.0.0	.tapp.cl/	7/16/2025, 8:23:01 PM	no	no
_clsk	b5gh2n%7C1718137381741%7C1%7C1%7Cr.clarity.ms%2Fcollect	.tapp.cl/	6/12/2024, 8:23:01 PM	no	no