Summary
A Concise Overview of the scan result of url https://x.com/vb112377/status/1836625480771895324?mx=2
- Document
- HTML
- 5
- StyleSheets
- 1
- Scripts
- 105
- Font
- 0
- Images
- 4
- Links
- 6
- JavaScript Variables
- 19
- Console log messages
- 0
- Network
- Requests
- 138
- Bytes Transferred
- 2.14MB
- Bytes Total
- 8.34MB
- DNS Record
- A Record
- 1
- Technology
- Webmail
- 1
- Programming languages
- 1
- CRM
- 1
- Authentication
- 2
- PaaS
- 1
- Web frameworks
- 1
- Web servers
- 1
- Security
- 1
- SSL/TLS certificate authorities
- 1
- CDN
- 1
- Payment processors
- 1
- Miscellaneous
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
https://twitter.com/tos | Terms of Service |
https://twitter.com/privacy | Privacy Policy |
https://support.twitter.com/articles/20170514 | Cookie Policy |
https://legal.twitter.com/imprint.html | Imprint |
https://business.twitter.com/en/help/troubleshooting/how-twitter-ads-work.html?ref=web-twc-ao-gbl-adsinfo&utm_source=twc&utm_medium=web&utm_campaign=ao&utm_content=adsinfo | Ads info |
https://t.co/pgaFKqKr5n | simplex.chatSimpleX Chat - Contact |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Security | ||
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Web frameworks | ||
Express | Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs. | Type: headers Name: x-powered-by Regex: ^Express(?:$|,) |
Miscellaneous | ||
Plaid | Plaid is a fintech company that facilitates communication between financial services apps and users' banks and credit card providers. | Type: headers Name: content-security-policy Regex: cdn\.plaid\.com\/ |
Web servers | ||
Express | Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs. | Type: headers Name: x-powered-by Regex: ^Express(?:$|,) |
Programming languages | ||
Node.js | Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser. | Dependent on Express |
Webmail | ||
Apple iCloud Mail | Apple iCloud Mail is a webmail service provided by Apple, Inc. | Type: dns Regex: apple-domain |
CDN | ||
Amazon S3 | Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface. | Type: headers Name: server Regex: s3[^ ]{0,250}amazonaws\.com |
Payment processors | ||
Plaid | Plaid is a fintech company that facilitates communication between financial services apps and users' banks and credit card providers. | Type: headers Name: content-security-policy Regex: cdn\.plaid\.com\/ |
CRM | ||
Salesforce | Salesforce is a cloud computing service software (SaaS) that specializes in customer relationship management (CRM). | Type: dns Regex: salesforce\.com |
PaaS | ||
Amazon Web Services | Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. | Dependent on Amazon S3 |
Authentication | ||
Google Sign-in | Google Sign-In is a secure authentication system that reduces the burden of login for users, by enabling them to sign in with their Google account. | Type: scriptSrc Regex: accounts\.google\.com\/gsi\/client |
Apple Sign-in | Apple Sign-in is based on OAuth 2.0 and OpenID Connect, and provides a privacy-friendly way for users to sign in to websites and apps. | Type: scriptSrc Regex: appleid\.auth\.js |
SSL/TLS certificate authorities | ||
DigiCert | Type: certIssuer Regex: DigiCert |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 1 msGood
- requestTime
- 191 msGood
- dom
- 97 msGood
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
A | x.com | 104.244.42.129 | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
*.twitter.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 8/19/2024 | 8/18/2025 | 12 months 4 days |
*.twimg.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 7/8/2024 | 7/7/2025 | 12 months 4 days |
api.twitter.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 10/31/2023 | 10/29/2024 | 12 months 4 days |
accounts.google.com WR2 | 8/12/2024 | 11/4/2024 | 2 months 23 days |
appleid.cdn-apple.com Apple Public EV Server RSA CA 2 - G1 | 6/6/2024 | 12/3/2024 | 6 months |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
cache-control | no-cache, no-store, must-revalidate, pre-check=0, post-check=0 |
content-encoding | gzip |
content-security-policy | connect-src 'self' blob: https://api.x.ai https://api.x.com https://jf.x.com https://jf.twitter.com https://*.pscp.tv https://*.video.pscp.tv https://*.twimg.com https://api.twitter.com https://api.x.com https://api-stream.twitter.com https://api-stream.x.com https://ads-api.twitter.com https://ads-api.x.com https://aa.twitter.com https://aa.x.com https://caps.twitter.com https://caps.x.com https://pay.twitter.com https://pay.x.com https://sentry.io https://ton.twitter.com https://ton.x.com https://ton-staging.atla.twitter.com https://ton-staging.atla.x.com https://ton-staging.pdxa.twitter.com https://ton-staging.pdxa.x.com https://twitter.com https://x.com https://upload.twitter.com https://upload.x.com https://www.google-analytics.com https://accounts.google.com/gsi/status https://accounts.google.com/gsi/log https://production.plaid.com/ https://sandbox.plaid.com/ https://checkoutshopper-live.adyen.com wss://*.pscp.tv https://vmap.snappytv.com https://vmapstage.snappytv.com https://vmaprel.snappytv.com https://vmap.grabyo.com https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com ws://localhost:8008/v2/ipc http://127.0.0.1:7346 http://127.0.0.1:9001 https://ads-twitter.com https://analytics.twitter.com https://analytics.x.com ; default-src 'self'; form-action 'self' https://twitter.com https://*.twitter.com https://x.com https://*.x.com https://localhost.twitter.com:3443 https://localhost.x.com:3443; font-src 'self' https://*.twimg.com; frame-src 'self' https://twitter.com https://x.com https://mobile.twitter.com https://mobile.x.com https://pay.twitter.com https://pay.x.com https://cards-frame.twitter.com https://accounts.google.com/ https://client-api.arkoselabs.com/ https://iframe.arkoselabs.com/ https://vaultjs.apideck.com/ https://cdn.plaid.com/ https://verify-sandbox.plaid.com/ https://api.sandbox.sardine.ai/ https://payments-dev.x.com/ https://payments-staging.x.com/ https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' blob: data: https://*.cdn.twitter.com https://*.cdn.x.com https://ton.twitter.com https://ton.x.com https://*.twimg.com https://analytics.twitter.com https://analytics.x.com https://cm.g.doubleclick.net https://www.google-analytics.com https://maps.googleapis.com https://www.periscope.tv https://www.pscp.tv https://ads-twitter.com https://ads-api.twitter.com https://ads-api.x.com https://media.riffsy.com https://*.giphy.com https://media.tenor.com https://c.tenor.com https://*.pscp.tv https://*.periscope.tv https://prod-periscope-profile.s3-us-west-2.amazonaws.com https://platform-lookaside.fbsbx.com https://scontent.xx.fbcdn.net https://scontent-sea1-1.xx.fbcdn.net https://*.googleusercontent.com https://t.co/1/i/adsct; manifest-src 'self'; media-src 'self' blob: https://twitter.com https://x.com https://*.twimg.com https://*.vine.co https://*.pscp.tv https://*.video.pscp.tv https://dhdsnappytv-vh.akamaihd.net https://pdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://mdhdsnappytv-vh.akamaihd.net https://mpdhdsnappytv-vh.akamaihd.net https://mmdhdsnappytv-vh.akamaihd.net https://dwo3ckksxlb0v.cloudfront.net; object-src 'none'; script-src 'self' 'unsafe-inline' https://*.twimg.com https://recaptcha.net/recaptcha/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://client-api.arkoselabs.com/ https://www.google-analytics.com https://twitter.com https://x.com https://accounts.google.com/gsi/client https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js https://www.gstatic.com/cast/sdk/libs/caf_receiver/v3/cast_receiver_framework.js https://static.ads-twitter.com https://cdn.plaid.com/link/v2/stable/link-initialize.js https://api.sandbox.sardine.ai/assets/loader.min.js http://localhost:12345/scfs/cl/js/vizio-companion-lib.js 'wasm-unsafe-eval' 'nonce-OGQ5MWViMmMtODc4MS00ODBhLWE3ZTgtNDJiNTRiYjhiZGY3'; style-src 'self' 'unsafe-inline' https://accounts.google.com/gsi/style https://*.twimg.com; worker-src 'self' blob:; report-uri https://x.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=false |
content-type | text/html; charset=utf-8 |
cross-origin-embedder-policy | unsafe-none |
cross-origin-opener-policy | unsafe-none |
date | Thu, 19 Sep 2024 07:39:35 GMT |
expiry | Tue, 31 Mar 1981 05:00:00 GMT |
last-modified | Thu, 19 Sep 2024 07:39:35 GMT |
perf | 7402827104 |
pragma | no-cache |
server | tsa_f |
strict-transport-security | max-age=631138519 |
x-connection-hash | dc51354136cf1b12c7c77d5a67a82ac2fe80d22790c252f51f20b9ea1b604390 |
x-content-type-options | nosniff |
x-frame-options | DENY |
x-powered-by | Express |
x-response-time | 117 |
x-transaction-id | 20c5f5860f75724b |
x-xss-protection | 0 |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|---|
connect-src | 'self'blob:https://api.x.aihttps://api.x.comhttps://jf.x.comhttps://jf.twitter.comhttps://*.pscp.tvhttps://*.video.pscp.tvhttps://*.twimg.comhttps://api.twitter.comhttps://api.x.comhttps://api-stream.twitter.comhttps://api-stream.x.comhttps://ads-api.twitter.comhttps://ads-api.x.comhttps://aa.twitter.comhttps://aa.x.comhttps://caps.twitter.comhttps://caps.x.comhttps://pay.twitter.comhttps://pay.x.comhttps://sentry.iohttps://ton.twitter.comhttps://ton.x.comhttps://ton-staging.atla.twitter.comhttps://ton-staging.atla.x.comhttps://ton-staging.pdxa.twitter.comhttps://ton-staging.pdxa.x.comhttps://twitter.comhttps://x.comhttps://upload.twitter.comhttps://upload.x.comhttps://www.google-analytics.comhttps://accounts.google.com/gsi/statushttps://accounts.google.com/gsi/loghttps://production.plaid.com/https://sandbox.plaid.com/https://checkoutshopper-live.adyen.comwss://*.pscp.tvhttps://vmap.snappytv.comhttps://vmapstage.snappytv.comhttps://vmaprel.snappytv.comhttps://vmap.grabyo.comhttps://dhdsnappytv-vh.akamaihd.nethttps://pdhdsnappytv-vh.akamaihd.nethttps://mdhdsnappytv-vh.akamaihd.nethttps://mdhdsnappytv-vh.akamaihd.nethttps://mpdhdsnappytv-vh.akamaihd.nethttps://mmdhdsnappytv-vh.akamaihd.nethttps://mdhdsnappytv-vh.akamaihd.nethttps://mpdhdsnappytv-vh.akamaihd.nethttps://mmdhdsnappytv-vh.akamaihd.nethttps://dwo3ckksxlb0v.cloudfront.nethttps://media.riffsy.comhttps://*.giphy.comhttps://media.tenor.comhttps://c.tenor.comws://localhost:8008/v2/ipchttp://127.0.0.1:7346http://127.0.0.1:9001https://ads-twitter.comhttps://analytics.twitter.comhttps://analytics.x.com |
default-src | 'self' |
form-action | 'self'https://twitter.comhttps://*.twitter.comhttps://x.comhttps://*.x.comhttps://localhost.twitter.com:3443https://localhost.x.com:3443 |
font-src | 'self'https://*.twimg.com |
frame-src | 'self'https://twitter.comhttps://x.comhttps://mobile.twitter.comhttps://mobile.x.comhttps://pay.twitter.comhttps://pay.x.comhttps://cards-frame.twitter.comhttps://accounts.google.com/https://client-api.arkoselabs.com/https://iframe.arkoselabs.com/https://vaultjs.apideck.com/https://cdn.plaid.com/https://verify-sandbox.plaid.com/https://api.sandbox.sardine.ai/https://payments-dev.x.com/https://payments-staging.x.com/https://recaptcha.net/recaptcha/https://www.google.com/recaptcha/https://www.gstatic.com/recaptcha/ |
img-src | 'self'blob:data:https://*.cdn.twitter.comhttps://*.cdn.x.comhttps://ton.twitter.comhttps://ton.x.comhttps://*.twimg.comhttps://analytics.twitter.comhttps://analytics.x.comhttps://cm.g.doubleclick.nethttps://www.google-analytics.comhttps://maps.googleapis.comhttps://www.periscope.tvhttps://www.pscp.tvhttps://ads-twitter.comhttps://ads-api.twitter.comhttps://ads-api.x.comhttps://media.riffsy.comhttps://*.giphy.comhttps://media.tenor.comhttps://c.tenor.comhttps://*.pscp.tvhttps://*.periscope.tvhttps://prod-periscope-profile.s3-us-west-2.amazonaws.comhttps://platform-lookaside.fbsbx.comhttps://scontent.xx.fbcdn.nethttps://scontent-sea1-1.xx.fbcdn.nethttps://*.googleusercontent.comhttps://t.co/1/i/adsct |
manifest-src | 'self' |
media-src | 'self'blob:https://twitter.comhttps://x.comhttps://*.twimg.comhttps://*.vine.cohttps://*.pscp.tvhttps://*.video.pscp.tvhttps://dhdsnappytv-vh.akamaihd.nethttps://pdhdsnappytv-vh.akamaihd.nethttps://mdhdsnappytv-vh.akamaihd.nethttps://mdhdsnappytv-vh.akamaihd.nethttps://mpdhdsnappytv-vh.akamaihd.nethttps://mmdhdsnappytv-vh.akamaihd.nethttps://mdhdsnappytv-vh.akamaihd.nethttps://mpdhdsnappytv-vh.akamaihd.nethttps://mmdhdsnappytv-vh.akamaihd.nethttps://dwo3ckksxlb0v.cloudfront.net |
object-src | 'none' |
script-src | 'self''unsafe-inline'https://*.twimg.comhttps://recaptcha.net/recaptcha/https://www.google.com/recaptcha/https://www.gstatic.com/recaptcha/https://client-api.arkoselabs.com/https://www.google-analytics.comhttps://twitter.comhttps://x.comhttps://accounts.google.com/gsi/clienthttps://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.jshttps://www.gstatic.com/cast/sdk/libs/caf_receiver/v3/cast_receiver_framework.jshttps://static.ads-twitter.comhttps://cdn.plaid.com/link/v2/stable/link-initialize.jshttps://api.sandbox.sardine.ai/assets/loader.min.jshttp://localhost:12345/scfs/cl/js/vizio-companion-lib.js'wasm-unsafe-eval''nonce-OGQ5MWViMmMtODc4MS00ODBhLWE3ZTgtNDJiNTRiYjhiZGY3' |
style-src | 'self''unsafe-inline'https://accounts.google.com/gsi/stylehttps://*.twimg.com |
worker-src | 'self'blob: |
report-uri | https://x.com/i/csp_report?a=O5RXE%3D%3D%3D&ro=fals |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
guest_id | v1%3A172673157524892704 | .twitter.com/ | 10/20/2025, 7:39:35 AM | yes | no |
guest_id | 172673157524892704 | .x.com/ | 9/19/2025, 7:39:35 AM | yes | no |
night_mode | 2 | .x.com/ | 9/19/2025, 7:39:37 AM | yes | no |
gt | 1836671465078333852 | .x.com/ | 9/19/2024, 10:09:35 AM | yes | no |