Summary
A Concise Overview of the scan result of url https://www.roblox.com/games/2753915549/Blox-Fruits?privateServerLinkCode=25151825700054476801970480446875
- Document
- HTML
- 6
- StyleSheets
- 35
- Scripts
- 153
- Font
- 6
- Images
- 42
- Links
- 2
- JavaScript Variables
- 115
- Console log messages
- 0
- Network
- Requests
- 274
- Bytes Transferred
- 2.91MB
- Bytes Total
- 8.53MB
- DNS Record
- CNAME Record
- 6
- A Record
- 1
- Technology
- PaaS
- 1
- Payment processors
- 1
- SSL/TLS certificate authorities
- 1
- Security
- 1
- Analytics
- 1
- CDN
- 1
- Miscellaneous
- 1
Document
Links
The outgoing links identified from the page.
| Link | Text |
|---|---|
| https://create.roblox.com/ | Create |
| https://create.roblox.com/marketplace/models?keyword= | in Creator Marketplace |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
0string1string2stringonbeforetogglestringonscrollendstringRobloxstringadditionalUrlsstringurlNamestring$stringjQuerystringjQuery111109007181689532326stringminifyTeststringsetImmediatestringclearImmediatestringregeneratorRuntimestringHeaderScriptsstring__SENTRY__stringSentrystringRobloxTracerstring_gaqstringGoogleAnalyticsDisableRoblox2stringaccountCodestringsignupConversionEventKeystringwebPurchaseConversionEventKeystringgtagstringdataLayerstringreportFunCaptchaLoadedstringisRobloxIconEnabledForRethemestringrobloxIconstringcheckRobloxInstallstringEventTrackerstringIntlPolyfillstringGoogleAnalyticsEventsstringmakeGoogleAnalyticsLogObjectstringGoogleAnalyticsTimingTrackerstringRBXBaseEventListenerstringRobloxErrorstringisInitializedstringfitStringSpanstringInitStringTruncatorstringfitStringToWidthstringfitStringToWidthSafestringfitStringToWidthSafeTextstring_stringRobloxEventManagerstringGoogleListenerstringmCustomScrollbarstringgoogle_tag_managerstringgoogle_tag_datastringCoreUtilitiesstringCoreRobloxUtilitiesstringReactstringReactDOMstringReactDOMServerstringReduxstringReactReduxstringReduxThunkstringReactRouterstringReactRouterDOMstringPropTypesstringReactUtilitiesstringflatpickrstringReactStyleGuidestringConfigureWebAppsstringStaticBundlesInfostringrobloxAppstringangularstringf_a_cstringf_a_enstringstringifyWithFloatstringArkoseEnforcementstringFunCaptchastringALFCCJSstringstartArkoseEnforcementstringf_a_dstringRobloxThumbnailsstringRobloxPresencestring2f1acc6c3a606b082e5eef5e54414ffbstringRobloxBadgesstringcaptchastringformEventsstringtriggerCaptchastringRobloxItemPurchasestringeventKeystringrobloxAttributionIdsstringwebpackChunkStripeJSouterstringnoopstringStripestringtargetstringpublic_keystringapi_targetstringapi_target_sristringfc_api_serverstringcdnstringsiteDatastringonload_retrystringfp_resultstringloadedWithDatastringcapiVersionstringcapiModestringcapiSettingsstringfingerprinting_enabledstringextended_fingerprinting_enabledstringasync_fingerprintsstringfc_fpstringaestringmsiestringget_outer_htmlstringfind_onloadstringget_query_datastringlogstringsetAPIInputstringsetQueryDataInputstringquery_datastringfc_objstring
Technology
The technologies identified are present on the scanned URL.
| Name | Description | Detected patterns |
|---|---|---|
| Analytics | ||
Google Analytics | Google Analytics is a free web analytics service that tracks and reports website traffic. | Type: scriptSrc Regex: googletagmanager\.com\/gtag\/js |
| Security | ||
| HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
| Miscellaneous | ||
HTTP/3 | HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web. | Type: headers Name: alt-svc Regex: h3 |
| CDN | ||
 Amazon S3 | Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface. | Type: headers Name: server Regex: s3[^ ]{0,250}amazonaws\.com |
| Payment processors | ||
Stripe | Stripe offers online payment processing for internet businesses as well as fraud prevention, invoicing and subscription management. | Type: scriptSrc Regex: js\.stripe\.com |
| PaaS | ||
 Amazon Web Services | Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. | Dependent on Amazon S3 |
| SSL/TLS certificate authorities | ||
Sectigo | Sectigo provides SSL certificate and computer security products. | Type: certIssuer Regex: Sectigo |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 1291 msPoor
- requestTime
- 170 msGood
- dom
- 917 msPoor
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
| Type | Name | Content | DNSSEC |
|---|---|---|---|
| CNAME | www.roblox.com | titanium.roblox.com. | no |
| CNAME | titanium.roblox.com | edge-term4.roblox.com. | no |
| CNAME | edge-term4.roblox.com | edge-term4-iad4.roblox.com. | no |
| A | edge-term4-iad4.roblox.com | 128.116.102.4 | no |
| CNAME | www.roblox.com | titanium.roblox.com. | no |
| CNAME | titanium.roblox.com | edge-term4.roblox.com. | no |
| CNAME | edge-term4.roblox.com | edge-term4-lax4.roblox.com. | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
| Subject | Issue date | Expiry date | Valid |
|---|---|---|---|
roblox.com Sectigo RSA Organization Validation Secure Server CA | 2/7/2024 | 2/6/2025 | 1 year |
*.rbxcdn.com Amazon RSA 2048 M03 | 12/8/2023 | 1/5/2025 | 1 year 29 days |
*.google-analytics.com GTS CA 1C3 | 5/21/2024 | 8/13/2024 | 2 months 23 days |
arkoselabs.com Cloudflare Inc ECC CA-3 | 8/23/2023 | 8/22/2024 | 1 year |
a.stripecdn.com DigiCert SHA2 Extended Validation Server CA | 5/22/2024 | 8/22/2024 | 3 months 2 days |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
| Name | Value |
|---|---|
| alt-svc | h3=":443"; ma=2592000,h3-29=":443"; ma=259200 |
| cache-control | no-store, must-revalidate, no-cache |
| content-security-policy | report-uri https://metrics.roblox.com/v1/csp/report?type=enforce; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' roblox.com *.evidon.com *.gigya.com *.google-analytics.com *.ns1p.net adservice.google.com cdn.arkoselabs.com connect.facebook.net funcaptcha.com js.rbxcdn.com js.stripe.com long.open.weixin.qq.com midas.gtimg.cn radar.cedexis.com res.wx.qq.com roblox-api.arkoselabs.com roblox-load-generator-configuration.s3.us-east-2.amazonaws.com s.ytimg.com sb.scorecardresearch.com static.rbxcdn.com www.google.com www.gstatic.com www.youtube.com h.online-metrix.net request.eprotect.vantivcnp.com request.eprotect.vantivpostlive.com *.googletagmanager.com *.googleadservices.com googleads.g.doubleclick.net cdn.veriff.me *.lightstep.com client-api.arkoselabs.com api.arkoselabs.com *.sierra.chat sierra.chat; img-src 'self' data: *.cloudfront.net *.gilcdn.com *.gldcdn.com *.google-analytics.com *.google.com *.kaptcha.com *.rbxcdn.com *.roblox.com *.robloxlabs.com googleads.g.doubleclick.net i.ytimg.com www.googletagmanager.com robloxcorp.s.llnwi.net roblox-poc.global.ssl.fastly.net d1unuk07s6td74.cloudfront.net *.sierra.chat sierra.chat *.stripe.com *.tarobicdn.com *.tarobidevsandboxcdn.com; connect-src 'self' *.roblox.com *.robloxlabs.com *.rblx.org *.rbx.com *.rbxcdn.com *.roblox.cn *.simulpong.com *.lightstep.com *.ns1p.net *.arkoselabs.com *.kaptcha.com *.google.com *.google-analytics.com *.doubleclick.net *.sentry.io wss://realtime.roblox.com wss://realtime.sitetest1.robloxlabs.com wss://realtime.sitetest2.robloxlabs.com wss://realtime.sitetest3.robloxlabs.com wss://realtime-signalr.roblox.com *.braintree-api.com *.braintreegateway.com d1q2u37vreaobr.cloudfront.net funcaptcha.com robloxcorp.s.llnwi.net roblox-poc.global.ssl.fastly.net d1unuk07s6td74.cloudfront.net *.sierra.chat sierra.chat; |
| content-type | text/html; charset=utf-8 |
| cross-origin-opener-policy | same-origin-allow-popups |
| date | Tue, 11 Jun 2024 19:25:42 GMT |
| nel | {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1} |
| report-to | {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]} |
| roblox-machine-id | 50bd134c-f7e6-0b2d-e5ad-d858ed46cd78 |
| server | website |
| strict-transport-security | max-age=3600 |
| x-frame-options | SAMEORIGIN |
| x-roblox-edge | ams2 |
| x-roblox-region | us-central |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
| Name | Value |
|---|---|
| report-uri | https://metrics.roblox.com/v1/csp/report?type=enforce |
| upgrade-insecure-requests | |
| script-src'self''unsafe-inline'roblox.com*.evidon.com*.gigya.com*.google-analytics.com*.ns1p.netadservice.google.comcdn.arkoselabs.comconnect.facebook.netfuncaptcha.comjs.rbxcdn.comjs.stripe.comlong.open.weixin.qq.commidas.gtimg.cnradar.cedexis.comres.wx.qq.comroblox-api.arkoselabs.comroblox-load-generator-configuration.s3.us-east-2.amazonaws.coms.ytimg.comsb.scorecardresearch.comstatic.rbxcdn.comwww.google.comwww.gstatic.comwww.youtube.comh.online-metrix.netrequest.eprotect.vantivcnp.comrequest.eprotect.vantivpostlive.com*.googletagmanager.com*.googleadservices.comgoogleads.g.doubleclick.netcdn.veriff.me*.lightstep.comclient-api.arkoselabs.comapi.arkoselabs.com*.sierra.chatsierra.chat | |
| img-src'self'data:*.cloudfront.net*.gilcdn.com*.gldcdn.com*.google-analytics.com*.google.com*.kaptcha.com*.rbxcdn.com*.roblox.com*.robloxlabs.comgoogleads.g.doubleclick.neti.ytimg.comwww.googletagmanager.comrobloxcorp.s.llnwi.netroblox-poc.global.ssl.fastly.netd1unuk07s6td74.cloudfront.net*.sierra.chatsierra.chat*.stripe.com*.tarobicdn.com*.tarobidevsandboxcdn.com | |
| connect-src'self'*.roblox.com*.robloxlabs.com*.rblx.org*.rbx.com*.rbxcdn.com*.roblox.cn*.simulpong.com*.lightstep.com*.ns1p.net*.arkoselabs.com*.kaptcha.com*.google.com*.google-analytics.com*.doubleclick.net*.sentry.iowss://realtime.roblox.comwss://realtime.sitetest1.robloxlabs.comwss://realtime.sitetest2.robloxlabs.comwss://realtime.sitetest3.robloxlabs.comwss://realtime-signalr.roblox.com*.braintree-api.com*.braintreegateway.comd1q2u37vreaobr.cloudfront.netfuncaptcha.comrobloxcorp.s.llnwi.netroblox-poc.global.ssl.fastly.netd1unuk07s6td74.cloudfront.net*.sierra.chatsierra.chat |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
| Name | Value | Domain/Path | Expires | Secure | HTTP Only |
|---|---|---|---|---|---|
| rbx-ip2 | 1 | .roblox.com/ | 6/11/2024, 8:25:43 PM | no | no |
| GuestData | UserID=-1984697442 | .roblox.com/ | 7/16/2025, 7:25:43 PM | no | no |
| _cfuvid | crXMV5GE8DrHus7Pkk6tILCFbOUdeDiVus7jcEY2KsM-1718133945129-0.0.1.1-604800000 | .arkoselabs.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
| _gcl_au | 1.1.742440249.1718133947 | .roblox.com/ | 9/9/2024, 7:25:46 PM | no | no |
| m | a8a34e91-077b-48ee-93fa-02d506a0e0bf34e176 | m.stripe.com/ | 7/16/2025, 7:25:50 PM | yes | yes |
| __stripe_mid | d48d6aa1-cab5-4ace-9daa-a788245412ac6714c9 | .www.roblox.com/ | 6/11/2025, 7:25:50 PM | yes | no |
| __stripe_sid | 8336d098-48e7-4809-9231-23c0dc20303532a5c7 | .www.roblox.com/ | 6/11/2024, 7:55:50 PM | yes | no |