Summary
A Concise Overview of the scan result of url https://www.tiktok.com/@freeman_core/video/7462115461468048646?_t=ZN-8tc5Rv2JydC&_r=1
- Document
- HTML
- 3
- StyleSheets
- 5
- Scripts
- 186
- Font
- 8
- Images
- 14
- Links
- 0
- JavaScript Variables
- 46
- Console log messages
- 0
- Network
- Requests
- 292
- Bytes Transferred
- 6.76MB
- Bytes Total
- 17.12MB
- DNS Record
- CNAME Record
- 4
- A Record
- 9
- Technology
- Web servers
- 1
- Reverse proxies
- 1
- Security
- 2
Document
Links
The outgoing links identified from the page.
Link | Text |
---|
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Security | ||
hCaptcha | hCaptcha is an anti-bot solution that protects user privacy and rewards websites. | Type: headers Name: content-security-policy Regex: (?:\.|\/\/)hcaptcha\.com |
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Web servers | ||
Nginx | Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache. | Type: headers Name: server Regex: nginx(?:\/([\d.]{1,250}))? |
Reverse proxies | ||
Nginx | Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache. | Type: headers Name: server Regex: nginx(?:\/([\d.]{1,250}))? |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 40 msGood
- requestTime
- 156 msGood
- dom
- 1066 msPoor
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
CNAME | www.tiktok.com | www.tiktok.com.edgesuite.net. | no |
CNAME | www.tiktok.com.edgesuite.net | a2047.api10.akamai.net. | no |
A | a2047.api10.akamai.net | 23.209.116.32 | no |
A | a2047.api10.akamai.net | 23.209.116.42 | no |
A | a2047.api10.akamai.net | 23.209.116.35 | no |
A | a2047.api10.akamai.net | 23.209.116.41 | no |
A | a2047.api10.akamai.net | 23.209.116.34 | no |
A | a2047.api10.akamai.net | 23.209.116.27 | no |
A | a2047.api10.akamai.net | 23.209.116.43 | no |
A | a2047.api10.akamai.net | 23.209.116.40 | no |
A | a2047.api10.akamai.net | 23.209.116.33 | no |
CNAME | www.tiktok.com | www.tiktok.com.edgesuite.net. | no |
CNAME | www.tiktok.com.edgesuite.net | a2047.api10.akamai.net. | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
*.www.tiktok.com RapidSSL TLS ECC CA G1 | 11/11/2024 | 11/10/2025 | 12 months 4 days |
*.neutral.ttwstatic.com RapidSSL TLS RSA CA G1 | 7/2/2024 | 7/1/2025 | 12 months 4 days |
*.tiktokv.eu RapidSSL TLS ECC CA G1 | 8/5/2024 | 9/5/2025 | 1 year 1 month 1 day |
1450622545.rsc.cdn77.org E5 | 1/7/2025 | 4/7/2025 | 2 months 29 days |
*.tiktokw.eu RapidSSL TLS ECC CA G1 | 8/13/2024 | 9/13/2025 | 1 year 1 month 1 day |
*.tiktok.com RapidSSL TLS ECC CA G1 | 7/15/2024 | 7/15/2025 | 1 year |
*.tiktokv.com RapidSSL TLS RSA CA G1 | 8/20/2024 | 9/20/2025 | 1 year 1 month 1 day |
*.tiktokcdn.com RapidSSL TLS ECC CA G1 | 7/15/2024 | 7/15/2025 | 1 year |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
cache-control | max-age=0, no-cache, no-store |
content-encoding | br |
content-security-policy | script-src 'unsafe-eval' sf16-website-login.neutral.ttwstatic.com s20.tiktokcdn.com *.tiktokcdn-us.com www.google.com recaptcha.google.com js.hcaptcha.com client-api.arkoselabs.com www.gstatic.com connect.facebook.net;frame-src *.tiktok.com accounts.google.com www.google.com recaptcha.google.com www.facebook.com *.kakao.com lf16-web.tiktokcdn.com assets.braintreegateway.com appleid.apple.com access.line.me api.twitter.com h.online-metrix.net bytedance: newassets.hcaptcha.com client-api.arkoselabs.com;worker-src https: blob:;frame-ancestors tea-va.bytedance.net www.tiktok.com |
content-type | text/html; charset=utf-8 |
date | Mon, 03 Feb 2025 17:47:34 GMT |
expires | Mon, 03 Feb 2025 17:47:34 GMT |
feature-policy | microphone 'none'; geolocation 'none' |
pragma | no-cache |
referrer-policy | strict-origin-when-cross-origin |
server | nginx |
server-timing | inner; dur=346 cdn-cache; desc=MISS, edge; dur=1, origin; dur=454 |
strict-transport-security | max-age=31536000; includeSubdomains |
x-akamai-request-id | 4be906dc |
x-bytefaas-execution-duration | 343.68 |
x-bytefaas-request-id | 20250203174733E0865976D68C8FC79868 |
x-cache | TCP_MISS from a96-16-85-145.deploy.akamaitechnologies.com (AkamaiGHost/11.8.1-2c00874bde3a1f428b1fbbe8783f6d16) (-) |
x-content-type-options | nosniff |
x-download-options | noopen |
x-frame-options | SAMEORIGIN |
x-gw-dst-psm | serverless.tiktok.desktop |
x-origin-response-time | 455,96.16.85.145 |
x-powered-by | Goofy Node |
x-pumbaa-web-avail | 1 |
x-tt-logid | 20250203174733E0865976D68C8FC79868 |
x-tt-trace-host | 01356f17445847c2a52b5f3aa8693fc635bcf99a0f82be88e419ce9d003d4573bf1bc132f19ef5d01e1a9bcae33010e5e7e85ce07a9459f25700e84ae7a2b9917d373c8dd5f9c1cbe4064b843c2678388a6688faf28f29cf3de7b3966d1cb2f795da0100f1d7c6b96234c24058616e83975927474f42dc6921630c9b4ed8bca236 |
x-tt-trace-id | 00-250203174733E0865976D68C8FC79868-3688FF1A0A0F07F4-00 |
x-tt-trace-tag | id=16;cdn-cache=miss;type=dyn |
x-xss-protection | 1; mode=block |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|---|
script-src | 'unsafe-eval'sf16-website-login.neutral.ttwstatic.coms20.tiktokcdn.com*.tiktokcdn-us.comwww.google.comrecaptcha.google.comjs.hcaptcha.comclient-api.arkoselabs.comwww.gstatic.comconnect.facebook.net;frame-src*.tiktok.comaccounts.google.comwww.google.comrecaptcha.google.comwww.facebook.com*.kakao.comlf16-web.tiktokcdn.comassets.braintreegateway.comappleid.apple.comaccess.line.meapi.twitter.comh.online-metrix.netbytedance:newassets.hcaptcha.comclient-api.arkoselabs.com;worker-srchttps:blob:;frame-ancestorstea-va.bytedance.netwww.tiktok.co |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
tt_csrf_token | [tt_csrf_token redacted] | .tiktok.com/ | 12/31/1969, 11:59:59 PM | yes | yes |
tt_chain_token | [tt_chain_token redacted] | .tiktok.com/ | 8/2/2025, 5:47:34 PM | yes | yes |
ak_bmsc | 1EEEC4D9C81DE3A291FFB251FA9AF273~000000000000000000000000000000~YAAQkVUQYEBC7ryUAQAAnrvszBr8uQjauPyx5gCEHygt0dj8/DRl5yCc+p9/c1gJ82O5xbgX/UiKRdADp+rhocfmj7SJlrGR+Jjl75dCnd564YTEZv7jrnBlTskcIEmmcSFDqYUOssIh1AZwZ+3d9wODVTl09VSQc9eDPwrcmiA70oQBvQtwwAsz0xIlMIzLXkmLn20JrLMf4ypI0SOoICeB+jbh5dm3KyxfbXuEWYUPpwlyrjZALck35fnpiQY3lGJEjDyxq3UEY66135K/aEkO81QBtOZt+FAoom0Pe8nhEDHVWfaYBd5ZwrNNEZEDu+q4WLiTmPTTHyDFFNvVz51+Bp0sdzEYQcSHsG141O1ZpspTPjXLRYxKkBGD/Hy9D2odwEecdGTzaQ== | .tiktok.com/ | 2/3/2025, 7:47:33 PM | no | no |
tiktok_webapp_theme_source | system | .www.tiktok.com/ | 11/30/2025, 5:47:35 PM | yes | no |
tiktok_webapp_theme | light | .www.tiktok.com/ | 11/30/2025, 5:47:35 PM | yes | no |
ttwid | 1%7CaVQssfrtFTTjxnp72a5tiS-49lK7Ckqip0qxapEXOeo%7C1738604855%7C375a4012aa1f05d7a88691907b286af1953573f3458156c447898a25704d3116 | .tiktok.com/ | 2/3/2026, 5:47:35 PM | yes | yes |
delay_guest_mode_vid | 8 | .www.tiktok.com/ | 11/30/2025, 5:47:36 PM | yes | no |
odin_tt | 747f897aa5d6c3b4fa78d7e690a07ab4313c7d3f828141818c6a5a84495a347809af078cb3001c27a882c3164f2f0496a06d0a6648c98de95c929f0e618342f163e9a0de543892508cea958b0dcf0846 | .tiktok.com/ | 2/3/2026, 5:47:39 PM | no | yes |
msToken | [msToken redacted] | .tiktok.com/ | 2/13/2025, 5:47:39 PM | yes | no |
msToken | [msToken redacted] | .tiktokw.eu/ | 2/13/2025, 5:47:42 PM | yes | no |
msToken | [msToken redacted] | www.tiktok.com/ | 5/4/2025, 5:47:42 PM | no | no |