Summary
A Concise Overview of the scan result of url https://www.michelin.com/
- Document
- HTML
- 2
- StyleSheets
- 3
- Scripts
- 5
- Font
- 3
- Images
- 19
- Links
- 7
- JavaScript Variables
- 28
- Console log messages
- 0
- Network
- Requests
- 38
- Bytes Transferred
- 2.78MB
- Bytes Total
- 8.61MB
- DNS Record
- CNAME Record
- 8
- A Record
- 1
- AAAA Record
- 1
- Technology
- Programming languages
- 1
- PaaS
- 1
- Web frameworks
- 1
- Web servers
- 1
- Security
- 2
- Cookie compliance
- 1
- CDN
- 1
- Caching
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
https://agngnconpm.cloudimg.io/v7/https://dgaddcosprod.blob.core.windows.net/corporate-production/attachments/cluqp1oj60p7g14e907ta49ic-cgem-deu-2023-vf.pdf | Document d'enregistrement universel 202314.5 MB (pdf) Télécharger |
https://natural-rubber.michelin.com/fr/ | Caoutchouc naturel |
https://recrutement.michelin.fr/ | Rejoignez-nous ! |
https://www.facebook.com/MichelinFrance | |
https://www.youtube.com/Michelin | |
https://www.linkedin.com/company/4101 | |
https://twitter.com/michelin |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Security | ||
hCaptcha | hCaptcha is an anti-bot solution that protects user privacy and rewards websites. | Type: headers Name: content-security-policy Regex: (?:\.|\/\/)hcaptcha\.com |
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Web frameworks | ||
Express | Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs. | Type: headers Name: x-powered-by Regex: ^Express(?:$|,) |
Web servers | ||
Express | Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs. | Type: headers Name: x-powered-by Regex: ^Express(?:$|,) |
Caching | ||
Azure Content Delivery Network (CDN) reduces load times, save bandwidth and speed responsiveness. | Type: headers Name: server Regex: ^(?:ECAcc|ECS|ECD) | |
Programming languages | ||
Node.js | Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser. | Dependent on Express |
CDN | ||
Azure Content Delivery Network (CDN) reduces load times, save bandwidth and speed responsiveness. | Type: headers Name: server Regex: ^(?:ECAcc|ECS|ECD) | |
PaaS | ||
Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers. | Dependent on Azure CDN | |
Cookie compliance | ||
Didomi is a consent management platform helping brands and businesses collect, store and leverage their customer consents. | Type: scriptSrc Regex: sdk\.privacy-center\.org\/.{0,250}\/loader\.js |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 159 msNeeds Improvement
- requestTime
- 58 msGood
- dom
- 498 msPoor
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
CNAME | www.michelin.com | michelin-com.azureedge.net. | no |
CNAME | michelin-com.azureedge.net | michelin-com.ec.azureedge.net. | no |
CNAME | michelin-com.ec.azureedge.net | scdn35d13.wpc.22b8ca.omegacdn.net. | no |
CNAME | scdn35d13.wpc.22b8ca.omegacdn.net | sni1gl.wpc.omegacdn.net. | no |
A | sni1gl.wpc.omegacdn.net | 152.199.21.175 | no |
CNAME | www.michelin.com | michelin-com.azureedge.net. | no |
CNAME | michelin-com.azureedge.net | michelin-com.ec.azureedge.net. | no |
CNAME | michelin-com.ec.azureedge.net | scdn35d13.wpc.22b8ca.omegacdn.net. | no |
CNAME | scdn35d13.wpc.22b8ca.omegacdn.net | sni1gl.wpc.omegacdn.net. | no |
AAAA | sni1gl.wpc.omegacdn.net | 2606:2800:233:1cb7:261b:1f9c:2074:3c | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
www.michelin.com GeoTrust TLS RSA CA G1 | 6/17/2024 | 7/18/2025 | 1 year 1 month 1 day |
tag.aticdn.net Thawte RSA CA 2018 | 7/30/2024 | 1/23/2025 | 5 months 27 days |
*.cloudimg.io DigiCert TLS RSA SHA256 2020 CA1 | 11/14/2023 | 11/13/2024 | 1 year |
*.privacy-center.org Amazon RSA 2048 M03 | 3/10/2024 | 4/7/2025 | 1 year 28 days |
*.pa-cd.com Thawte TLS RSA CA G1 | 8/29/2024 | 9/14/2025 | 1 year 16 days |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
content-encoding | gzip |
content-security-policy | default-src 'self' *.google-analytics.com *.doubleclick.net https://phmgxnk.pa-cd.com https://api.privacy-center.org https://dgaddcosprod.blob.core.windows.net https://agngnconpm.cloudimg.io *.googleapis.com; style-src 'self' 'unsafe-inline' https://dgaddcosprod.blob.core.windows.net https://agngnconpm.cloudimg.io; script-src 'nonce-cm0qbgb8parxs11e4cpgu5054' 'self' *.google-analytics.com *.doubleclick.net *.googletagmanager.com https://sdk.privacy-center.org https://dgaddcosprod.blob.core.windows.net https://agngnconpm.cloudimg.io 'unsafe-eval' 'unsafe-inline' *.youtube.com *.hcaptcha.com www.google.com www.gstatic.com; font-src 'self' https://dgaddcosprod.blob.core.windows.net https://agngnconpm.cloudimg.io; img-src 'self' blob: data: *.ytimg.com https://sdk.privacy-center.org https://dgaddcosprod.blob.core.windows.net https://agngnconpm.cloudimg.io https://dxm.contentcenter.michelin.com; frame-src 'self' *.youtube.com *.vimeo.com https://edge.media-server.com https://dgaddcosprod.blob.core.windows.net https://charts.symex.be https://youtu.be *.hcaptcha.com *.sibforms.com https://vimeo.com www.google.com; base-uri 'self'; object-src 'self' data: https://dgaddcosprod.blob.core.windows.net |
content-type | text/html; charset=utf-8 |
date | Fri, 06 Sep 2024 06:09:27 GMT |
etag | W/"23b0a-NkkUFbScE8DCbVtUZz8dxBUzD1Y" |
expires | Fri, 06 Sep 2024 07:09:27 GMT |
permissions-policy | fullscreen=(self "https://www.youtube.com") |
referrer-policy | same-origin |
server | ECAcc (mdr/6761) |
strict-transport-security | max-age=31536000; includeSubDomains |
vary | Accept-Encoding |
x-content-type-options | nosniff |
x-frame-options | SAMEORIGIN |
x-powered-by | Express |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|---|
default-src | 'self'*.google-analytics.com*.doubleclick.nethttps://phmgxnk.pa-cd.comhttps://api.privacy-center.orghttps://dgaddcosprod.blob.core.windows.nethttps://agngnconpm.cloudimg.io*.googleapis.com |
style-src | 'self''unsafe-inline'https://dgaddcosprod.blob.core.windows.nethttps://agngnconpm.cloudimg.io |
script-src | 'nonce-cm0qbgb8parxs11e4cpgu5054''self'*.google-analytics.com*.doubleclick.net*.googletagmanager.comhttps://sdk.privacy-center.orghttps://dgaddcosprod.blob.core.windows.nethttps://agngnconpm.cloudimg.io'unsafe-eval''unsafe-inline'*.youtube.com*.hcaptcha.comwww.google.comwww.gstatic.com |
font-src | 'self'https://dgaddcosprod.blob.core.windows.nethttps://agngnconpm.cloudimg.io |
img-src | 'self'blob:data:*.ytimg.comhttps://sdk.privacy-center.orghttps://dgaddcosprod.blob.core.windows.nethttps://agngnconpm.cloudimg.iohttps://dxm.contentcenter.michelin.com |
frame-src | 'self'*.youtube.com*.vimeo.comhttps://edge.media-server.comhttps://dgaddcosprod.blob.core.windows.nethttps://charts.symex.behttps://youtu.be*.hcaptcha.com*.sibforms.comhttps://vimeo.comwww.google.com |
base-uri | 'self' |
object-src | 'self'data:https://dgaddcosprod.blob.core.windows.ne |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
corporate.csrf | csrf | michelin.com/ | 9/6/2024, 2:55:03 PM | no | yes |
corporate.csrf | csrf | www.michelin.com/ | 9/6/2024, 2:55:06 PM | no | yes |
_pcid | %7B%22browserId%22%3A%22m0qbgblg33ctr8yn%22%2C%22_t%22%3A%22mgeqdtvc%7Cm0qbgcjc%22%7D | www.michelin.com/ | 10/6/2025, 6:09:29 AM | yes | no |
_pctx | %7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAOZQAjq3wA3KAB9%2BABhEAjQQGMAVlBABfIA | www.michelin.com/ | 10/6/2025, 6:09:29 AM | yes | no |
didomi_token | eyJ1c2VyX2lkIjoiMTkxYzVmM2ItNmIzNy02NDg1LTg5N2QtZTZjOWU3NmMwZTFiIiwiY3JlYXRlZCI6IjIwMjQtMDktMDZUMDY6MDk6MjkuMjY3WiIsInVwZGF0ZWQiOiIyMDI0LTA5LTA2VDA2OjA5OjI5LjI2OFoiLCJ2ZXJzaW9uIjpudWxsfQ== | .michelin.com/ | 9/7/2025, 6:09:29 AM | no | no |
_pprv | eyJjb25zZW50Ijp7IjAiOnsibW9kZSI6ImVzc2VudGlhbCJ9LCI3Ijp7Im1vZGUiOiJvcHQtaW4ifX0sInB1cnBvc2VzIjp7IjAiOiJBTSIsIjciOiJETCJ9LCJfdCI6Im1nZXFkc3hsfG0wcWJnYmxsIn0%3D | www.michelin.com/ | 10/6/2025, 6:09:27 AM | yes | no |