Check DNS, Urls + Redirects, Certificates and Content of your Website



B

Missing HSTS or Cookie-warnings

Checked:
13.10.2021 14:54:04


Older results


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
accounts.waybetterdev.com
A
35.166.171.159
Portland/Oregon/United States (US) - Amazon.com, Inc.
Hostname: ec2-35-166-171-159.us-west-2.compute.amazonaws.com
yes
1
0

A
44.229.81.182
Portland/Oregon/United States (US) - Amazon.com, Inc.
Hostname: ec2-44-229-81-182.us-west-2.compute.amazonaws.com
yes
1
0

A
52.42.213.174
Portland/Oregon/United States (US) - Amazon Technologies Inc.
Hostname: ec2-52-42-213-174.us-west-2.compute.amazonaws.com
yes
1
0

AAAA

yes


www.accounts.waybetterdev.com

Name Error
yes
1
0
*.waybetterdev.com
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes


*.accounts.waybetterdev.com
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 14748, Flags 256



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.11.2021, 00:00:00 +, Signature-Inception: 11.10.2021, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com
1 DS RR in the parent zone found



DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest 4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=



1 RRSIG RR to validate DS RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 26.10.2021, 05:00:00 +, Signature-Inception: 13.10.2021, 04:00:00 +, KeyTag 14748, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 14748 used to validate the DS RRSet in the parent zone



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 15549, Flags 256



Public Key with Algorithm 8, KeyTag 30909, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 39343, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 22.10.2021, 18:24:21 +, Signature-Inception: 07.10.2021, 18:19:21 +, KeyTag 30909, Signer-Name: com



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest "4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: waybetterdev.com
waybetterdev.com
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "6e79vrfcivrn6dah379379j55k1qr8f9" between the hashed NSEC3-owner "6e79em9ifseac8oi10dv1r8p5v0b7epv" and the hashed NextOwner "6e7afehmlktnpntp9qogmnncc48nqftp". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 6e79em9ifseac8oi10dv1r8p5v0b7epv.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 20.10.2021, 04:25:48 +, Signature-Inception: 13.10.2021, 03:15:48 +, KeyTag 39343, Signer-Name: com



DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q1gin43n1arrc9osm6qpqr81h5m9a". So that domain name is the Closest Encloser of "waybetterdev.com". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 19.10.2021, 04:24:03 +, Signature-Inception: 12.10.2021, 03:14:03 +, KeyTag 39343, Signer-Name: com



0 DNSKEY RR found




Zone: accounts.waybetterdev.com
accounts.waybetterdev.com
0 DS RR in the parent zone found



0 DNSKEY RR found




Zone: www.accounts.waybetterdev.com
www.accounts.waybetterdev.com
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
www.accounts.waybetterdev.com
  ns-1903.awsdns-45.co.uk

accounts.waybetterdev.com
  ns-1903.awsdns-45.co.uk / 41c16ca1e5df8fe1332eda5cef7230d9 -
205.251.199.111
London/England/United Kingdom (GB) - Amazon.com, Inc.


 
2600:9000:5307:6f00::1
Seattle/Washington/United States (US) - Amazon.com

waybetterdev.com
  ns-1301.awsdns-34.org / 9b373ed6a02010d8a39af476407142f3 -
205.251.197.21
London/England/United Kingdom (GB) - Amazon.com, Inc.


 
2600:9000:5305:1500::1
Seattle/Washington/United States (US) - Amazon.com


  ns-1903.awsdns-45.co.uk / 41c16ca1e5df8fe1332eda5cef7230d9 -
205.251.199.111
London/England/United Kingdom (GB) - Amazon.com, Inc.


 
2600:9000:5307:6f00::1
Seattle/Washington/United States (US) - Amazon.com


  ns-672.awsdns-20.net / 32916b59a8fc3fd49c838657f0c4e7af -
205.251.194.160
Seattle/Washington/United States (US) - Amazon.com, Inc.


 
2600:9000:5302:a000::1
Seattle/Washington/United States (US) - Amazon.com


  ns-7.awsdns-00.com / 758989b8a91eaa6347c0e27feb0a1605 -
205.251.192.7
Paris/Île-de-France/France (FR) - Amazon.com, Inc.


 
2600:9000:5300:700::1
Seattle/Washington/United States (US) - Amazon.com

com
  a.gtld-servers.net / nnn1-fra6


  b.gtld-servers.net / nnn1-eltxl2


  c.gtld-servers.net / nnn1-fra6


  d.gtld-servers.net / nnn1-fra6


  e.gtld-servers.net / nnn1-fra6


  f.gtld-servers.net / nnn1-fra5


  g.gtld-servers.net / nnn1-fra5


  h.gtld-servers.net / nnn1-fra5


  i.gtld-servers.net / nnn1-fra5


  j.gtld-servers.net / nnn1-ein4


  k.gtld-servers.net / nnn1-ein1


  l.gtld-servers.net / nnn1-ein4


  m.gtld-servers.net / nnn1-ein1


4. SOA-Entries


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1634129613
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:1


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1634129628
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:12


Domain:waybetterdev.com
Zone-Name:waybetterdev.com
Primary:ns-1903.awsdns-45.co.uk
Mail:awsdns-hostmaster.amazon.com
Serial:1
Refresh:7200
Retry:900
Expire:1209600
TTL:86400
num Entries:8


Domain:accounts.waybetterdev.com
Zone-Name:waybetterdev.com
Primary:ns-1903.awsdns-45.co.uk
Mail:awsdns-hostmaster.amazon.com
Serial:1
Refresh:7200
Retry:900
Expire:1209600
TTL:86400
num Entries:2


Domain:www.accounts.waybetterdev.com
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


5. Screenshots

Startaddress: https://waybetter.com, address used: https://waybetter.com/, Screenshot created 2021-10-13 14:56:57 +00:0

Mobil (412px x 732px)

1548 milliseconds

Screenshot mobile - https://waybetter.com/
Mobil + Landscape (732px x 412px)

1498 milliseconds

Screenshot mobile landscape - https://waybetter.com/
Screen (1280px x 1680px)

2293 milliseconds

Screenshot Desktop - https://waybetter.com/

Mobile- and other Chrome-Checks

widthheight
visual Viewport396732
content Size39611410

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using TLS 1.2, ECDHE_RSA with X25519, and AES_256_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://accounts.waybetterdev.com/
35.166.171.159
308
https://accounts.waybetterdev.com/
Html is minified: 108.59 %
0.390
A
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:05 GMT
Content-Type: text/html
Content-Length: 177
Connection: close
Location: https://accounts.waybetterdev.com/

• http://accounts.waybetterdev.com/
44.229.81.182
308
https://accounts.waybetterdev.com/
Html is minified: 108.59 %
0.390
A
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:06 GMT
Content-Type: text/html
Content-Length: 177
Connection: close
Location: https://accounts.waybetterdev.com/

• http://accounts.waybetterdev.com/
52.42.213.174
308
https://accounts.waybetterdev.com/
Html is minified: 108.59 %
0.387
A
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:06 GMT
Content-Type: text/html
Content-Length: 177
Connection: close
Location: https://accounts.waybetterdev.com/

• https://accounts.waybetterdev.com/
35.166.171.159
302
https://waybetter.com
Html is minified: 100.00 %
6.314
B
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:07 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 43
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains
X-Powered-By: Express
Location: https://waybetter.com
Vary: Accept

• https://accounts.waybetterdev.com/
44.229.81.182
302
https://waybetter.com
Html is minified: 100.00 %
6.283
B
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:14 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 43
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains
X-Powered-By: Express
Location: https://waybetter.com
Vary: Accept

• https://accounts.waybetterdev.com/
52.42.213.174
302
https://waybetter.com
Html is minified: 100.00 %
6.437
B
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:21 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 43
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains
X-Powered-By: Express
Location: https://waybetter.com
Vary: Accept

• https://waybetter.com
GZip used - 30872 / 178358 - 82.69 %
Inline-JavaScript (∑/total): 10/145718 Inline-CSS (∑/total): 1/58
200

Html is minified: 398.57 %
7.090
B
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:44 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains
Vary: Origin, Accept-Encoding
set-cookie: wb-jwt-production=; Domain=.waybetter.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip

• http://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
35.166.171.159
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
308
https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 108.59 %
0.364
A
Visible Content: 308 Permanent Redirect openresty/1.15.8.2
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:28 GMT
Content-Type: text/html
Content-Length: 177
Connection: close
Location: https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• http://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
44.229.81.182
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
308
https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 108.59 %
0.413
A
Visible Content: 308 Permanent Redirect openresty/1.15.8.2
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:28 GMT
Content-Type: text/html
Content-Length: 177
Connection: close
Location: https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• http://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
52.42.213.174
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
308
https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 108.59 %
0.367
A
Visible Content: 308 Permanent Redirect openresty/1.15.8.2
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:28 GMT
Content-Type: text/html
Content-Length: 177
Connection: close
Location: https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

• https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 100.00 %
6.460
A
Not Found
Visible Content: {"error":{"message":"Resource not found","name":"NotFoundError","status":404}}
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:53 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 78
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains
X-Powered-By: Express
ETag: W/"4e-y3/UVlMN4bR/q9/UPvFVeK1B23I"

• https://44.229.81.182/
44.229.81.182
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 109.66 %
4.266
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 32)
404 Not Found openresty/1.15.8.2
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:34 GMT
Content-Type: text/html
Content-Length: 159
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://52.42.213.174/
52.42.213.174
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 109.66 %
4.426
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 32)
404 Not Found openresty/1.15.8.2
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:39 GMT
Content-Type: text/html
Content-Length: 159
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

• https://35.166.171.159/
35.166.171.159
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 109.66 %
4.657
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
small visible content (num chars: 32)
404 Not Found openresty/1.15.8.2
Server: openresty/1.15.8.2
Date: Wed, 13 Oct 2021 12:55:29 GMT
Content-Type: text/html
Content-Length: 159
Connection: close
Strict-Transport-Security: max-age=15724800; includeSubDomains

7. Comments


1. General Results, most used to calculate the result

Aname "accounts.waybetterdev.com" is subdomain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 61113 (complete: 168171)
Agood: All ip addresses are public addresses
AGood: Minimal 2 ip addresses per domain name found: accounts.waybetterdev.com has 3 different ip addresses (authoritative).
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: accounts.waybetterdev.com has no ipv6 address.
Agood: No asked Authoritative Name Server had a timeout
ADNS: "Name Error" means: No www-dns-entry defined. This isn't a problem
Ahttps://accounts.waybetterdev.com/ 35.166.171.159
302
https://waybetter.com
correct redirect https to https
Ahttps://accounts.waybetterdev.com/ 44.229.81.182
302
https://waybetter.com
correct redirect https to https
Ahttps://accounts.waybetterdev.com/ 52.42.213.174
302
https://waybetter.com
correct redirect https to https
Agood: destination is https
Agood - only one version with Http-Status 200
Agood: one preferred version: non-www is preferred
AGood: No cookie sent via http.
Agood: every https has a Strict Transport Security Header
Agood: HSTS has includeSubdomains - directive
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):2 complete Content-Type - header (5 urls)
https://35.166.171.159/ 35.166.171.159


Url with incomplete Content-Type - header - missing charset
https://44.229.81.182/ 44.229.81.182


Url with incomplete Content-Type - header - missing charset
https://52.42.213.174/ 52.42.213.174


Url with incomplete Content-Type - header - missing charset
Ahttp://accounts.waybetterdev.com/ 35.166.171.159
308
https://accounts.waybetterdev.com/
correct redirect http - https with the same domain name
Ahttp://accounts.waybetterdev.com/ 44.229.81.182
308
https://accounts.waybetterdev.com/
correct redirect http - https with the same domain name
Ahttp://accounts.waybetterdev.com/ 52.42.213.174
308
https://accounts.waybetterdev.com/
correct redirect http - https with the same domain name
Bwarning: HSTS max-age is too short - minimum 31536000 = 365 days required, 15724800 seconds = 182 days found
Bhttps://waybetter.com
200
wb-jwt-production=; Domain=.waybetter.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
Cookie sent via https, but not marked as secure
Bhttps://waybetter.com
200
wb-jwt-production=; Domain=.waybetter.com; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Mhttps://35.166.171.159/ 35.166.171.159
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://44.229.81.182/ 44.229.81.182
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://52.42.213.174/ 52.42.213.174
404

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://35.166.171.159/ 35.166.171.159
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://44.229.81.182/ 44.229.81.182
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://52.42.213.174/ 52.42.213.174
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
AGood: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain accounts.waybetterdev.com, 3 ip addresses.
Warning: More then one ip address per domain name found, checking all ip addresses the same http status, but different certificates found: Domain accounts.waybetterdev.com, 3 ip addresses, 2 certificates.
Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain accounts.waybetterdev.com, 3 ip addresses.

2. DNS- and NameServer - Checks

AInfo:: 16 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
AInfo:: 16 Queries complete, 16 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
Ok (4 - 8):: An average of 4.0 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 4 different Name Servers found: ns-1301.awsdns-34.org, ns-1903.awsdns-45.co.uk, ns-672.awsdns-20.net, ns-7.awsdns-00.com, 4 Name Servers included in Delegation: ns-1301.awsdns-34.org, ns-1903.awsdns-45.co.uk, ns-672.awsdns-20.net, ns-7.awsdns-00.com, 4 Name Servers included in 1 Zone definitions: ns-1301.awsdns-34.org, ns-1903.awsdns-45.co.uk, ns-672.awsdns-20.net, ns-7.awsdns-00.com, 1 Name Servers listed in SOA.Primary: ns-1903.awsdns-45.co.uk.
AGood: Only one SOA.Primary Name Server found.: ns-1903.awsdns-45.co.uk.
AGood: SOA.Primary Name Server included in the delegation set.: ns-1903.awsdns-45.co.uk.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns-1301.awsdns-34.org, ns-1903.awsdns-45.co.uk, ns-672.awsdns-20.net, ns-7.awsdns-00.com
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 4 different Name Servers found
AGood: All name servers have ipv4- and ipv6-addresses.: 4 different Name Servers found
AGood: Name servers with different Top Level Domains / Public Suffix List entries found: 4 Name Servers, 4 Top Level Domains: org, net, com, co.uk
AGood: Name Servers with different domain names found.: 4 different Domains found
AGood: Name servers with different Country locations found: 4 Name Servers, 3 Countries: FR, GB, US
AInfo: Ipv4-Subnet-list: 4 Name Servers, 1 different subnets (first Byte): 205., 1 different subnets (first two Bytes): 205.251., 4 different subnets (first three Bytes): 205.251.192., 205.251.194., 205.251.197., 205.251.199.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2600:, 1 different subnets (first two blocks): 2600:9000:, 4 different subnets (first three blocks): 2600:9000:5300:, 2600:9000:5302:, 2600:9000:5305:, 2600:9000:5307:, 4 different subnets (first four blocks): 2600:9000:5300:0700:, 2600:9000:5302:a000:, 2600:9000:5305:1500:, 2600:9000:5307:6f00:
AGood: Name Server IPv6 addresses from different subnets found.
AGood: Nameserver supports TCP connections: 2 good Nameserver
AGood: Nameserver supports Echo Capitalization: 2 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 2 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 2 good Nameserver
Nameserver doesn't pass all EDNS-Checks: ns-1903.awsdns-45.co.uk: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

3. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 supports GZip.
https://waybetter.com
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://waybetter.com
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
https://waybetter.com
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 2 script elements without defer/async.
Warning: CSS / JavaScript found without GZip support. Send these ressources with GZip. 1 external CSS / JavaScript files without GZip found - 27 with GZip, 28 complete
AGood: All images with internal compression not sent via GZip. Images (.png, .jpg) are already compressed, so an additional GZip isn't helpful. 6 images (type image/png, image/jpg) found without additional GZip. Not required because these images are already compressed
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 0 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 2 with Cache-Control max-age too short (minimum 7 days), 26 with Cache-Control long enough, 28 complete.
AGood: All images are sent with a long Cache-Control header (minimum 7 days). So the browser can reuse these files, no download is required. 27 image files with long Cache-Control max-age found
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AGood: Some img-elements have a valid alt-attribute.: 27 img-elements found, 23 img-elements with correct alt-attributes (defined, not an empty value).
Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 3 img-elements without alt-attribute, 1 img-elements with empty alt-attribute found.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
https://accounts.waybetterdev.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
404
6.460 seconds
Warning: 404 needs more then one second
https://35.166.171.159/ 35.166.171.159
404
4.657 seconds
Warning: 404 needs more then one second
https://44.229.81.182/ 44.229.81.182
404
4.266 seconds
Warning: 404 needs more then one second
https://52.42.213.174/ 52.42.213.174
404
4.426 seconds
Warning: 404 needs more then one second
ADuration: 182813 milliseconds, 182.813 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
waybetter.com
waybetter.com
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
waybetter.com
waybetter.com
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=waybetter.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


accounts.waybetterdev.com
35.166.171.159
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

accounts.waybetterdev.com
35.166.171.159
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=accounts-g2.waybetterdev.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


accounts.waybetterdev.com
44.229.81.182
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

accounts.waybetterdev.com
44.229.81.182
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=accounts-g2.waybetterdev.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


accounts.waybetterdev.com
52.42.213.174
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

accounts.waybetterdev.com
52.42.213.174
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=accounts-g2.waybetterdev.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


accounts.waybetterdev.com
accounts.waybetterdev.com
443
ok
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

accounts.waybetterdev.com
accounts.waybetterdev.com
443
ok
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=accounts-g2.waybetterdev.com

2CN=R3, O=Let's Encrypt, C=US

3CN=ISRG Root X1, O=Internet Security Research Group, C=US


44.229.81.182
44.229.81.182
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

44.229.81.182
44.229.81.182
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0


52.42.213.174
52.42.213.174
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

52.42.213.174
52.42.213.174
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0


35.166.171.159
35.166.171.159
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok

35.166.171.159
35.166.171.159
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
error checking OCSP stapling
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0


9. Certificates

1.
1.
CN=accounts-g2.waybetterdev.com
21.08.2021
19.11.2021
expires in 33 days
accounts-g2.waybetterdev.com, accounts.waybetter.com, accounts.waybetterdev.com - 3 entries
1.
1.
CN=accounts-g2.waybetterdev.com
21.08.2021

19.11.2021
expires in 33 days
accounts-g2.waybetterdev.com, accounts.waybetter.com, accounts.waybetterdev.com - 3 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:03E1DF208D0F22FDC42BBE8B919FF86CE542
Thumbprint:7C7A3AE06A37E66DA2BBB255328F8E1B427C0A5C
SHA256 / Certificate:PD06qYQG4fzzFXKS0UBYr0PbHmD+QKDXYSKG6I7aRC0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8a45eefa9338059343d731acf1517d3b8fadb276faeea69abddc048cea82ed2c
SHA256 hex / Subject Public Key Information (SPKI):8a45eefa9338059343d731acf1517d3b8fadb276faeea69abddc048cea82ed2c (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 1429 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 1429 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4978 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4978 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


2.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
02.06.2021
02.06.2022
expires in 228 days
ingress.local - 1 entry
2.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
02.06.2021

02.06.2022
expires in 228 days
ingress.local - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:1C79D22BFFAEAB03B2AC9DF0433640AB
Thumbprint:C6558B3D8E3FA4893444CC60BFAACABDC0AC1DFE
SHA256 / Certificate:lGSbhbgZhv5qpMd7q7N3wiwxPl+sBfaClKdAbvfxSlg=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):ebddb72312e299222a23ac01180bb1e18846203178168821987981b9def11c66
SHA256 hex / Subject Public Key Information (SPKI):ebddb72312e299222a23ac01180bb1e18846203178168821987981b9def11c66 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.

3.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
30.09.2021
30.09.2022
expires in 348 days
ingress.local - 1 entry
3.
1.
CN=Kubernetes Ingress Controller Fake Certificate, O=Acme Co
30.09.2021

30.09.2022
expires in 348 days
ingress.local - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:1ECB381889E9D45176F1DB20A8B2DECF
Thumbprint:611DF4F76CF7ED72514C64FFD7DD7F8556711330
SHA256 / Certificate:ktB581uvBPbevo4/0DrDPiEcyhRpfiIHyENoBlyDAdk=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):4614f0f976ebb59365f4b9b60e56c6479468ec245cae5cf4061c91cc49b0a6f8
SHA256 hex / Subject Public Key Information (SPKI):4614f0f976ebb59365f4b9b60e56c6479468ec245cae5cf4061c91cc49b0a6f8 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.

4.
1.
CN=waybetter.com
21.08.2021
19.11.2021
expires in 33 days
g2.waybetter.com, run.bet, stepbet.com, waybetter.com, www.stepbet.com, www.waybetter.com - 6 entries
4.
1.
CN=waybetter.com
21.08.2021

19.11.2021
expires in 33 days
g2.waybetter.com, run.bet, stepbet.com, waybetter.com, www.stepbet.com, www.waybetter.com - 6 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:03440144A2D2B6A90D25A4811114AB5EE850
Thumbprint:808E46A9B1085E9E8CBD1534BEFDB68807DE08F4
SHA256 / Certificate:YXtq9mUDiXNnycVzJwW/hWUtYiEIg0yHe6iCkpYypeo=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):4ffccf5a97814a2bfaa21ad5d7e3d4c4205c99765c93e2a419d854b51241c8ee
SHA256 hex / Subject Public Key Information (SPKI):4ffccf5a97814a2bfaa21ad5d7e3d4c4205c99765c93e2a419d854b51241c8ee (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r3.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020
15.09.2025
expires in 1429 days


2.
CN=R3, O=Let's Encrypt, C=US
04.09.2020

15.09.2025
expires in 1429 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00912B084ACF0C18A753F6D62E25A75F5A
Thumbprint:A053375BFE84E8B748782C7CEE15827A6AF5A405
SHA256 / Certificate:Z63RFmsCCuYbj1/JaBPATCqliZYHloZVcqPH5zdhPf0=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SHA256 hex / Subject Public Key Information (SPKI):8d02536c887482bc34ff54e41d2ba659bf85b341a0a20afadb5813dcfbcf286d
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 4978 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 4978 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0
1
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
2836307483
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-08-21 00:48:19
2021-11-19 00:48:18
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com - 3 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=R3, O=Let's Encrypt, C=US
0 /0 new
1
5
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
0
0
4
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0 /0 new
0
2

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
5080425787
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-08-20 22:48:19
2021-11-18 23:48:18
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


4742497277
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-06-21 23:47:55
2021-09-19 23:47:54
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


4417984177
leaf cert
CN=R3, O=Let's Encrypt, C=US
2021-04-23 00:47:29
2021-07-22 00:47:29
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


4114665412
precert
CN=R3, O=Let's Encrypt, C=US
2021-02-22 02:47:03
2021-05-23 01:47:03
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


3823047702
precert
CN=R3, O=Let's Encrypt, C=US
2020-12-24 03:46:40
2021-03-24 03:46:40
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


3555185470
precert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-10-25 04:46:16
2021-01-23 04:46:16
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


3291550488
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2020-08-26 04:45:51
2020-11-24 05:45:51
accounts.waybetter.com, accounts.waybetterdev.com, accounts-g2.waybetterdev.com
3 entries


2737466767
leaf cert
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
2020-04-25 22:00:00
2021-05-26 10:00:00
*.waybetter.com, *.waybetter.ninja, *.waybetterdev.com, waybetter.com, waybetter.ninja, waybetterdev.com
6 entries


2699173103
leaf cert
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
2020-04-11 22:00:00
2021-05-12 10:00:00
*.waybetter.ninja, *.waybetterdev.com, waybetter.ninja, waybetterdev.com
4 entries


1509548244
leaf cert
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
2019-05-23 22:00:00
2020-06-24 10:00:00
*.waybetter.com, *.waybetter.ninja, *.waybetterdev.com, waybetter.com, waybetter.ninja, waybetterdev.com
6 entries


1464577470
leaf cert
CN=Amazon, OU=Server CA 1B, O=Amazon, C=US
2019-05-09 22:00:00
2020-06-10 10:00:00
*.waybetter.ninja, *.waybetterdev.com, waybetter.ninja, waybetterdev.com
4 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://waybetter.com
a

28

0


0
0
0


iframe

1

0


0
0
0


img

27
1,681,290 Bytes
0
1
26
26
0
0
-26

link
stylesheet
11
17,452 Bytes
0
0
11
0
0
0


link
other
1
2,252 Bytes
0
0
1
1
0
0
-1

meta
other
6

0


0
0
0


script

17
407,852 Bytes
0
0
17
1
0
0
-1

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://waybetter.com

a

/


1
ok








a

/about


2
ok








a

/careers


2
ok








a

/company/dietbet


2
ok








a

/company/stepbet


2
ok








a

/dietbet


3
ok








a

/games


6
ok








a

/login?product=waybetter


1
ok








a

/privacy


1
ok








a

/rules


1
ok








a

/stepbet


3
ok








a

/terms


1
ok








a

https://waybetter.zendesk.com/hc/en-us/categories/360001994313-WayBetter?utm_source=waybetter.com&utm_medium=link&utm_campaign=top_nav


1
ok








a

mailto: support@waybetter.com


1
ok








a

mailto:PR@waybetter.com


1
ok








iframe
src
https://www.googletagmanager.com/ns.html?id=GTM-KPBBSPD&gtm_auth=DnnIJcTXpzqdW2K_NrnE6g&gtm_preview=env-2&gtm_cookies_win=x


1
ok








img
src
/assets/aabe57f737f6317ec212401c12cc5933.svg
200

1
ok
alt: A menu icon that looks like 3 stacked lines.image/svg+xml, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 with long duration found.
GZip: 647/1879 Bytes






img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto,w_1484/v1/hub/content/42einmWKYgEDg8hXLqTWaw/7e95c447c9fba2cfb2d869b8beb19911/WB_HomePageAppHero2.jpg
200

1
ok
alt: front door app launch desktopimage/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 188457 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-X6htAiYvgFyhZmkBafSRkwiaQ4CgdsAajGqFgC2/bzI=
sha384-OjBmM0SjkfyNh7aLZZBnltVvr5jxGLCaMsvQoCcEVvBbITOuIT/8pU9EVx7eoO14
sha512-Awt4uMg5khjKQnZD+xRQv5BISB1bjrWYn1R4odapIM2/hWMHC1YYq9koYpOhOPJrA5r6mE6mGFJo/MMqMy4oqA==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto,w_1484/v1/hub/content/42einmWKYgEDg8hXLqTWaw/7e95c447c9fba2cfb2d869b8beb19911/WB_HomePageAppHero2.jpg" crossorigin="anonymous" integrity="sha256-X6htAiYvgFyhZmkBafSRkwiaQ4CgdsAajGqFgC2/bzI=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto,w_375/v1/hub/content/2gy3QiYr3pd2OoHSBKeE6i/15a5d2a6ef71c5645d1e28808edd78de/WB_Welcome_BG_Mobile2.jpg
200

1
ok
alt: app launch mobile heroimage/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 70230 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-pXvEh4iPAnlkdNftykNs8aejbrrs6QXl78UtvWbTVUw=
sha384-8kOhxtYdtE+L798FvhcDsAMwaYYlR8SkMqDGkz4WYj1HYa4BE/oCeexZ1SoQ253S
sha512-7NB4ijOVOhy4zTY98fKM82WlsGzA2YGZSZFty64LAJ247j3ila1RqsfaaQjwAvpSMpYJASHIFKtZ9A+KEIGiHQ==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto,w_375/v1/hub/content/2gy3QiYr3pd2OoHSBKeE6i/15a5d2a6ef71c5645d1e28808edd78de/WB_Welcome_BG_Mobile2.jpg" crossorigin="anonymous" integrity="sha256-pXvEh4iPAnlkdNftykNs8aejbrrs6QXl78UtvWbTVUw=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/2RwJBph9T228cwkcCug2gs/763e0e1ea780d8b00caff774984dab86/Hayley_2x.jpg
200

1
ok
alt: Round picture of Haley.image/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 13696 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-WZ318zcDkPt6S+Q29xfpLCs1VW/xSCQTmE1FWv3u8V0=
sha384-SmJX2kMLdP0A278OJM5Is2Br2K230lphFpPO3+inLz7RoycRIjDzAKvNFXq6yAq0
sha512-b0j+PaUDMbrZILwip6OJouJ+veWH9E5PfaJsTlXZ96LGPxUj7r7+SgyrbsZVHGtK783LgxFPyKWZb5e9CqgO5w==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/2RwJBph9T228cwkcCug2gs/763e0e1ea780d8b00caff774984dab86/Hayley_2x.jpg" crossorigin="anonymous" integrity="sha256-WZ318zcDkPt6S+Q29xfpLCs1VW/xSCQTmE1FWv3u8V0=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/49JCHsgati2qKCuWCmAYU4/133bb3ce912e9423b0cb918861b86fd3/Adam_2x.png
200

1
ok
alt: Round picture of Shannon.image/png, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 27764 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-kFwO5uVToqmyRE4ymkVALjMIUSX4zO2JIqpKRlAHC2E=
sha384-DU0RRUTsSQMIxhoui+a0SRGGyGI3j6Oms0216D6ybb7C/jyy5WqDXVvGVKngCHqM
sha512-x1CzJADyUpmWiPPR0ZACU5QRZjSFPV+Wpu/ULhEPAChhpWlQzbaT+TAGgv/kN61zCJjzfPBLf4+MtKuSO4CvCw==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/49JCHsgati2qKCuWCmAYU4/133bb3ce912e9423b0cb918861b86fd3/Adam_2x.png" crossorigin="anonymous" integrity="sha256-kFwO5uVToqmyRE4ymkVALjMIUSX4zO2JIqpKRlAHC2E=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/6vOTif8eFqCkqyMeEC28CY/77716414de7e024824235213bed9dba0/SB_Feature.jpg
200

2
ok
alt: Image of a woman walking down steps.image/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 228625 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-PlRcRei0Ly7oRKeJy04CaBparQIBnK9PdW9CPABh64E=
sha384-sDTcmrQMnpDDY4jr7BW1Aafuzi0FTIXLFzWgVrseSEWbdfLhjTWfrHbdNJB1X23V
sha512-SU7cE3vjk+b1VR7k+u3GS4bZoQ/gWn4jicd4vuZDRQCtHdfQTEG1DpkprkLXMW5soLLxK0uRRMY1UIb2kv791Q==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/6vOTif8eFqCkqyMeEC28CY/77716414de7e024824235213bed9dba0/SB_Feature.jpg" crossorigin="anonymous" integrity="sha256-PlRcRei0Ly7oRKeJy04CaBparQIBnK9PdW9CPABh64E=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/6wYWCc4ndKg0i8kCOsAceO/b2148b52b7e1a2a401fe3ea5005f380c/Stats_1264x140_designtest3.jpg
200

1
ok
no alt-Attributeimage/png, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 205 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-iN7t5WPDvUpkpuu1R+Ve8XvGZe9fFyAj4kBn09R0eV4=
sha384-9o4lkddo1dPAJbUodJtFRcf+RAC7bePI3aqexsEPKqCCuWF81uVdbp30GSCg7DU4
sha512-fkYVECswUe5xc3j2AwEEtn4pT8j55W90HsXwqyr8V2dI7d6+QwnGsmyiM4IhpWQkp+GaI1Kgck+zwTW7lWZLbg==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/6wYWCc4ndKg0i8kCOsAceO/b2148b52b7e1a2a401fe3ea5005f380c/Stats_1264x140_designtest3.jpg" crossorigin="anonymous" integrity="sha256-iN7t5WPDvUpkpuu1R+Ve8XvGZe9fFyAj4kBn09R0eV4=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/78dGqIq3JhBEwe5EqcHxgA/ddcb9829188b1ba667bdf91071137ef1/Lurel_Feature.jpg
200

2
ok
alt: Image of Lurel.image/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 102012 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-rka3BQ7lm9QPmTe4e/GT6jM0DhU1iMcLhzx7kJYveLw=
sha384-BLhAqTApfgY1MeM6Ab52rTSIXQAdTqmDqGzSoP4NtYxnSW5lg1jkvwXPyKAKY7ZH
sha512-lINs0gd8PoEhJbtN/YT231KO7WIJtYtXs8QDjT5OG8Z9xmaD/3ZCHiE4RTb6LboY/UuoAnA4TdC0R9EByi/L6w==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/78dGqIq3JhBEwe5EqcHxgA/ddcb9829188b1ba667bdf91071137ef1/Lurel_Feature.jpg" crossorigin="anonymous" integrity="sha256-rka3BQ7lm9QPmTe4e/GT6jM0DhU1iMcLhzx7kJYveLw=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/7DLoy3Ll4qYWz2ZIeUbuoi/51f9adae034f5607e8de2e0d8741667f/SocialSupport_designtest-0-04.png
200

1
ok
alt: Illustration of three people together in a group.image/png, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 3355 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-LTQaxgIH18U5yOOmSyxwdhhZP9KT05khI94rl4nze/Q=
sha384-GV2TRVrrZu1MXJz03MIWLasD9luBkmwPH+BYyd/Btf8KMPG99Ln54ein62E0/uBK
sha512-z6dQaFp2ZAEfKkPGp5MvmeJHBZVX31EP4XGUmU+pwPZBV3nCf/p9trpPYM6dh55Gkgk9Vmv6FDumtlFcLuIQew==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/7DLoy3Ll4qYWz2ZIeUbuoi/51f9adae034f5607e8de2e0d8741667f/SocialSupport_designtest-0-04.png" crossorigin="anonymous" integrity="sha256-LTQaxgIH18U5yOOmSyxwdhhZP9KT05khI94rl4nze/Q=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/7EkOh54fjhN2pg9M1IRX5n/fdbf89f300445b184fb45eca2decec00/FinancialIncentives_designtest-05-05.png
200

1
ok
alt: Illustration of a stacked coins with dollar signs.image/png, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 17827 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-QO1EgCRyVDYtFynmt36Z+4qe7XLjdwC/ib0w+k0/1/o=
sha384-RfzUfPBFK/emKsN3TI2ez3v5GaCvDE0Gy5QH6NsiOaE6F9BoT41sNl4yaEB2j08x
sha512-mqYKDINy+02uNdFEfZVIxHX9dYbCRLxCKy62YmSF7ARbYXq/LQcGxZoHfre0SDriQ49tzrjPs//goi8XsWJ4GA==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/7EkOh54fjhN2pg9M1IRX5n/fdbf89f300445b184fb45eca2decec00/FinancialIncentives_designtest-05-05.png" crossorigin="anonymous" integrity="sha256-QO1EgCRyVDYtFynmt36Z+4qe7XLjdwC/ib0w+k0/1/o=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/7MBV69G9n4yLPsGWNvqBow/a8f5dd0a08a945a2a1e7a9e218fb9b4b/DB_Feature.jpg
200

2
ok
alt: Image of groceries falling out of a bag.image/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 151510 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-Qonj7ydhxYr7NXvBzNEL2quqyJ/VHcFRAVvbY+SeIhc=
sha384-ixmOfN0HfEfEQBJmoI+dKjfEg+fXLerIWv5oV4aZ6iHJxQ6dFuGrO0ZTkLs+eB+X
sha512-8WNJOC0MUeXJn/R5XFP4d+DIO2W5JVyd6VJqxgVhgh7o7M6uRaLpWSpHlogxmGBUkB8g7Ay812O2NGrUgXtlfg==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/7MBV69G9n4yLPsGWNvqBow/a8f5dd0a08a945a2a1e7a9e218fb9b4b/DB_Feature.jpg" crossorigin="anonymous" integrity="sha256-Qonj7ydhxYr7NXvBzNEL2quqyJ/VHcFRAVvbY+SeIhc=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/9wjgwn8z8xaEyiLJuUN2T/7064026f7f70b2ae95dd3eb0bca90581/WB_Testimonial_Jill.png
200

1
ok
alt: Jill portraitimage/png, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 27315 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-gnZN5L4KD4p4uACuFkeVDu9YJGIoHn1AfeUlRAFHuH8=
sha384-/WexEcXcxr16HzjlBw17nK2GRqRprkzJfKjwDldIP/RvWo20OwDXznBAFu84zOHn
sha512-WmDoLv7RKwZfqL/ZxrU8fsCf1mnKU0/RiiUBBwfurk8W2vo3ULDgKXgX0zvF/YHp4lvsiM2PHg1Jx4aOEanDRg==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/9wjgwn8z8xaEyiLJuUN2T/7064026f7f70b2ae95dd3eb0bca90581/WB_Testimonial_Jill.png" crossorigin="anonymous" integrity="sha256-gnZN5L4KD4p4uACuFkeVDu9YJGIoHn1AfeUlRAFHuH8=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/A49CPLwNqQX2mnE1vx8PP/afee8b7943188e983a071a6e50eabde2/WB_HomepageImageRefresh_1040x1360.jpeg
200

2
ok
alt: Image of a woman and child cooking.image/jpeg, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 163478 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-RCQ6Z6QK19AkYb51UHHiNkXX3WWydxqDmgnLUG0apog=
sha384-PMYEefQ2zCiURPzwqUNNQZBcwAD1KE9SbDlj7uNaNpiTdwvMcyquyAz60MbKfPTr
sha512-5vRyycy2IsiCINAkOzXfBsQve+vqMAgjp/g5uBmZhg0LxyYgbkVQ/a5M5A9hcp0ODKtybViWC5oQqrgsZEFZew==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/A49CPLwNqQX2mnE1vx8PP/afee8b7943188e983a071a6e50eabde2/WB_HomepageImageRefresh_1040x1360.jpeg" crossorigin="anonymous" integrity="sha256-RCQ6Z6QK19AkYb51UHHiNkXX3WWydxqDmgnLUG0apog=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/tA3N26JgwFkV9N7S20wYd/be9139db7a3ff6e59cde10124edb8a9f/ManageableGoals_designtest-06.png
200

1
ok
alt: Illustration of a target with an arrow in the center.image/png, X-Content-Type-Options nosniff found

Cache-Control: private, no-transform, immutable, max-age=2592000 with long duration found.
No GZip - 19570 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-4+Wx+Y6W77EWtnYZe9rTP6No1Jnu51pYFOgcNOtmt4A=
sha384-YAVb4I/X+KgC/o7ZTRqvJoj6uka/lfrWw6eaRTqU209IJGTpVcHd3t1QasOdyMfc
sha512-tdqgBgZsmiXys8kdc0ZlBdg5FViHWkilH53PBN9lM/emddscr12MzyDEpkL1Oy/mNzNuL3AZQG21m2rLttXWAg==

<img src="https://res.cloudinary.com/waybetter/image/upload/c_scale,dpr_2.0,f_auto,q_auto/v1/hub/content/tA3N26JgwFkV9N7S20wYd/be9139db7a3ff6e59cde10124edb8a9f/ManageableGoals_designtest-06.png" crossorigin="anonymous" integrity="sha256-4+Wx+Y6W77EWtnYZe9rTP6No1Jnu51pYFOgcNOtmt4A=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/37uj49KBhmiY2auAsc8Cyc/67f0ffdce89698f77ae54fd1c20d3d37/people.svg
200

1
ok
alt: People Magazine logo.image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 2624/6698 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-OUEYm037cl2QuEBkGfWsbuv0TGYE5KhLsfzbKqecMTM=
sha384-tX5WfJnVM3gUjVGibJ6RDyN+A3UmyNfTRvk86zZVAbU7Inkhcx3E8hjlGA9Qq7x1
sha512-bV6CgBj54zY17LUw43vEba1wxZvWimPwSpfxzqa46NhWzV7teIgzGbYQHxLwu9o9q0Wi3Kfw+VQkz7AgFs0r5w==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/37uj49KBhmiY2auAsc8Cyc/67f0ffdce89698f77ae54fd1c20d3d37/people.svg" crossorigin="anonymous" integrity="sha256-OUEYm037cl2QuEBkGfWsbuv0TGYE5KhLsfzbKqecMTM=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/3BXeeOOtIIMMiYMOGUIA0m/00cae57af3e173e61366dcbc7db5f7ba/today-show.svg
200

1
ok
alt: Today Show logo.image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 1336/3504 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-iBxH9AzS+kav+2KkvdwIc7IZGwHbygK6QoGoKObiv/k=
sha384-M4g3zxf5qwwPIPRFDpRKKTpuwM9IcTEg8eaco9ZdAy4xNKyuhgKDeeU9nX1p/7JY
sha512-28ljNaty/p2IKRi1gKoC97tJov8TaUvjNrEUbxjCGVVmpc/VE9NJXUurHW2OKs9eRovCUWrHxtL96Y9Aan4E/w==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/3BXeeOOtIIMMiYMOGUIA0m/00cae57af3e173e61366dcbc7db5f7ba/today-show.svg" crossorigin="anonymous" integrity="sha256-iBxH9AzS+kav+2KkvdwIc7IZGwHbygK6QoGoKObiv/k=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/4KSDHOXqc80o8wAeiCs8sw/549a4d5cdc93265c4db6397fd0e6d758/waybetter_logo_hub.svg
200

1
ok
alt: Motivation for your life goals.image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 2750/6818 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-GdLpKDpgIV2rb6itxnHSBNLNmh/kwFom+V9nKKJL6pU=
sha384-u1jybN2rGFFrDMe92LFkqz/GTYOyg1jfLFLfK6JVbBmOAu3Wkh5q5F7GWS+LoHUt
sha512-eLri1SXy4KU7t/KKrHkUINjJzIGLssTsSL3ghiCpzLTjpVaezfz+ZAoFrOR0thpT7XFNRcMIIUHpmSUm/9L3dw==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/4KSDHOXqc80o8wAeiCs8sw/549a4d5cdc93265c4db6397fd0e6d758/waybetter_logo_hub.svg" crossorigin="anonymous" integrity="sha256-GdLpKDpgIV2rb6itxnHSBNLNmh/kwFom+V9nKKJL6pU=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/4urmYEkFqwCWCamACyo8qc/5d72d0f6b34b251baf8ced475e9f4642/nyt.svg
200

1
ok
alt: New York Times logo.image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 7518/17309 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-0NU8kjscJBHwvFOegDp68dZT/bGh8+5ws6NmfaJDS/w=
sha384-8OXgxaBG2b4fYOzvvfJ+3FOSFLiT02D+c/VIs2mNE5DAC9S+ZnzEMWOALTuw/kwO
sha512-/YX8OZtgKJUcRdQYOYds2OqqiK5jMBoE5p4hkBkGge8XNgzLISG8FY2ejwRu4bWq7oHfiL888FcBLyt8hOY5xw==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/4urmYEkFqwCWCamACyo8qc/5d72d0f6b34b251baf8ced475e9f4642/nyt.svg" crossorigin="anonymous" integrity="sha256-0NU8kjscJBHwvFOegDp68dZT/bGh8+5ws6NmfaJDS/w=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/5jdHcXR0H6OSAsIk0qiS6q/e1483008630f7cd5dd44f237a1a515ac/abc-news.svg
200

1
ok
alt: ABC News logo.image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 1719/4219 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-ULaWIXpH7SQ99Ea/jfFh19BRqdWu7VFHD1Vb470TfPA=
sha384-imBI799Iq403fqXvQspT5cAwBJWLhHm/b6DbNWL6Dw+2NQL6P1PbRX6DuU+qhrPO
sha512-T8m3g8MZwc9TU6be8bMlfY2GQAE/JURF0PRp4neA9utg8g6AAuBYPbPFG9+JDuUOhLY/HlKcQRpblGwos6dmyQ==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/5jdHcXR0H6OSAsIk0qiS6q/e1483008630f7cd5dd44f237a1a515ac/abc-news.svg" crossorigin="anonymous" integrity="sha256-ULaWIXpH7SQ99Ea/jfFh19BRqdWu7VFHD1Vb470TfPA=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/5Ll0YtZusEkYcwOa4wQSaU/5c40133794f94b7aa9f33ce0ff36f8d3/wsj.svg
200

1
ok
alt: Wall Street Journal logo.image/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 1352/2658 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-zkV9ofVjjXdJyQjd+6Qr5dsCae7/FScB4u1yrmLPIZ8=
sha384-j9CWN4PS7ALwENEPiWIMEIFibBUot3oWStOM6BfBgXecUJEvLrgNjYUAGZxiX6FI
sha512-sV+4woqunfAloVC63BfvN59Y49NjqJXBsgyK8lPhpPJblKWO/YfUCy5cBMRurmXfBJ8rwM+DPCzNDk61ms7Dpw==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/5Ll0YtZusEkYcwOa4wQSaU/5c40133794f94b7aa9f33ce0ff36f8d3/wsj.svg" crossorigin="anonymous" integrity="sha256-zkV9ofVjjXdJyQjd+6Qr5dsCae7/FScB4u1yrmLPIZ8=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/5VH8YE980mYLF8TUUUgnCE/470bc90f98f024264bda360f08eb3030/WB_AppIcon2020.svg
200

1
ok
no alt-Attributeimage/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 1147/2399 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-WWVn7hkfKYDHVb9esHR+YYPOv5Wmbry+BFigxJPHLgc=
sha384-S8XO0gXVZDKDu6BhxbYoA4qQoY7MdRKqjIJJBxxb1etDRAhMXf3lp/1rbtPZfSGt
sha512-VJ9evvTBvKiuaJeI1bB5QtfnUrl/L00T7ud1ez5sIL4pue0CRVcila/xMRavi+IE622JnqpmDiZL0p8g2x8+kA==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/5VH8YE980mYLF8TUUUgnCE/470bc90f98f024264bda360f08eb3030/WB_AppIcon2020.svg" crossorigin="anonymous" integrity="sha256-WWVn7hkfKYDHVb9esHR+YYPOv5Wmbry+BFigxJPHLgc=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/7KI6DSqD8APGRQgibINNP3/805175cdea612a5b416c58780e0dee1b/SB_AppIcon2019.svg
200

1
ok
no alt-Attributeimage/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 1239/2500 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-TfB2h45VIjKVyo5fFrCFckhKk3LChih+xmP9cXFY6QQ=
sha384-9hQBGvUEz67qsn2eoyvIHR6szqu9DEhZ8tcDSCzOTJdib17wN/FK8UMctTkhYI3Q
sha512-31+Jk1+LQjKAvdBY+iJkP2ooKjqoUqHB1Ogq5jKW3JdtROxybNDpay2p6QON7d9qDjiVgU4TcCfrDZiY92yUZQ==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/7KI6DSqD8APGRQgibINNP3/805175cdea612a5b416c58780e0dee1b/SB_AppIcon2019.svg" crossorigin="anonymous" integrity="sha256-TfB2h45VIjKVyo5fFrCFckhKk3LChih+xmP9cXFY6QQ=" />




img
src
https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/R9x9TUetdLgD3RVlizxdu/f43b69aeca3070197222d788bfb57f56/DB_AppIcon2019.svg
200

1
ok
no alt-Attributeimage/svg+xml, X-Content-Type-Options nosniff found

Cache-Control: public, no-transform, immutable, max-age=2592000 with long duration found.
GZip: 1289/2536 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-urOw/xMtXOlvsi4qFJf7rYVWhk9f6IZt+8MAIGNESeA=
sha384-q5Fnn7jjuP8G5itGKCXJO3bPO+e6sUzzgNbvL8Gz+mxSdpDV8BWv0lPySSXQ34Ap
sha512-iL39DNeg3pN7pzt7UJdmW2/XKcrcmK8WJpeYIJ3005kc+ZdwJ3oVpP+7DoTrCgn6rFsUzvJuDq0F0tmt25GucA==

<img src="https://res.cloudinary.com/waybetter/image/upload/v1/hub/content/R9x9TUetdLgD3RVlizxdu/f43b69aeca3070197222d788bfb57f56/DB_AppIcon2019.svg" crossorigin="anonymous" integrity="sha256-urOw/xMtXOlvsi4qFJf7rYVWhk9f6IZt+8MAIGNESeA=" />




link
shortcut icon
//images.ctfassets.net/5nfc2z61o7ux/264h5eYdOk8ma4Qo4gkAyC/df5e4366976884e85cca26d4a1cc9eb4/favicon__1_.png
200

1
ok
image/png, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31536000 with long duration found.
No GZip - 2252 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-Fk8G1GLUr94woQE1N4ztOxA2G6wrYj0jzBLG98+7JVQ=
sha384-z3MG2s6NqPUPyXHE5m4iRXthCKhltRIRjgSggugbeY/8BR6lnCaMhLH2HROfK0dv
sha512-kd1a0s8pdKuYqN0pfwu8VDe40u81tdZhrnK9aDWhu6lPhcNDCe2MQdtngJG+i8yqbeUjecab4V67YPBa9dmm3g==

<link rel="shortcut icon" href="//images.ctfassets.net/5nfc2z61o7ux/264h5eYdOk8ma4Qo4gkAyC/df5e4366976884e85cca26d4a1cc9eb4/favicon__1_.png" crossorigin="anonymous" integrity="sha256-Fk8G1GLUr94woQE1N4ztOxA2G6wrYj0jzBLG98+7JVQ=" />




link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/default~MembershipOffer~ProductHero.a8a66890ffaf9e265166.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1603/18449 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/Feature.cc355e5a7b43406bd074.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 2457/24632 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/FeaturedGames.6bd742c387becc446da6.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 2174/21836 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/HighlightedRow.bf9655d1c59ffae9851d.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 430/1470 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/main.5a436713b5e8a523cd52.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 4620/22482 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported


Content loaded via url("...")

https://d5cm9864f6ued.cloudfront.net/assets/1f332244b227160b98fa4affd3c0f368.woff1
https://d5cm9864f6ued.cloudfront.net/assets/2cba8040d311aa138975fbb37f3936b8.woff21
https://d5cm9864f6ued.cloudfront.net/assets/646ff9164b91ae8808d57ed76720422e.woff1
https://d5cm9864f6ued.cloudfront.net/assets/741a29273946fac2d2f7f2d393af0f88.woff1
https://d5cm9864f6ued.cloudfront.net/assets/923df10d52dcc75c9d1dd0380259da9c.woff21
https://d5cm9864f6ued.cloudfront.net/assets/9fa1edc40da44131ed2ed656a4c8aab7.woff1
https://d5cm9864f6ued.cloudfront.net/assets/a0cbfe75314fa2fa9fef85e03077102f.woff21
https://d5cm9864f6ued.cloudfront.net/assets/a2a2df256a24779b0129f92f4f28f978.woff1
https://d5cm9864f6ued.cloudfront.net/assets/c4474c540f25b66b37455729ea3c62d2.woff21
https://d5cm9864f6ued.cloudfront.net/assets/dd060b008f6c6acf66ac33ff29de1adc.woff21
https://d5cm9864f6ued.cloudfront.net/assets/e16adf432f19149854582f7b38636930.woff21
https://d5cm9864f6ued.cloudfront.net/assets/e3e1b525ebefde0dd19ff09191bc7752.woff1
https://d5cm9864f6ued.cloudfront.net/assets/f013d815f98f4d62525bdf17a22c2c19.woff1

link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/PressLogos.a46b04fdc92051369db8.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 640/2474 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/ProductHero.47ca5cff8941e503119e.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1465/7246 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/Stat.112a84cf0e6de3a0470d.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 182/259 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/Stats.6ae77dafaa0cedfa8d30.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 839/3010 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/Testimonials.67bb358f7bd4e0d2d287.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 980/3995 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://d5cm9864f6ued.cloudfront.net/assets/WaybetterWay.f828a001a493929ded03.css
200

1
ok
text/css; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 2062/21076 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



meta
Content-type
text/html; charset=utf-8


1
ok








meta
creator



1
ok








meta
description
WayBetter makes games that motivate you to change your life. Achievable goals, social support, and financial rewards make it fun to build healthy habits and achieve your goals.


1
ok








meta
google-site-verification
9sRDUy040jH6qzFpLAXF_nYbWPd8S7gSicpNEIZJErc


1
ok








meta
keywords
waybetter, way better, dietbet, diet bet, health, fitness, behavior change, motivation platform, healthy behavior, habit change, weight loss, accountability, stepbet, step bet, runbet, run bet, sweatbet, sweat bet, live better


1
ok








meta
viewport
width=device-width, initial-scale=1, minimum-scale=1, maximum-scale=3


1
ok








script
src
https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js
200

1
ok
Missing defer / async attribute. application/javascript;charset=UTF-8, missing X-Content-Type-Options nosniff

GZip: 17247/42671 Bytes




Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

sha256-YOYL8lg890RLAKSwuNRt5f1YFvdo/HL9ccZDNXEy32k=
sha384-bF3JSZo0N9uTQ7ejmX03pU+u8Dg+YcvqKVNbfaXMii/gIS/j/1BuNNk6gUMajgeU
sha512-GvwY3yRkeIijaaOVxz9MCKFrqA+D9INxEPpTNEiB9ZMt872ZaGtZhAcwFarGCf6qhagryejz3wsnYFJvtaIIJg==

<script src="https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js" crossorigin="anonymous" integrity="sha256-YOYL8lg890RLAKSwuNRt5f1YFvdo/HL9ccZDNXEy32k=" />




script
src
https://d5cm9864f6ued.cloudfront.net/assets/Anchor.73eaee8fd15406f6d1bb.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip required: 182 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/bootstrap.ced47a59436b6027bf54.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 6294/21077 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/default~MembershipOffer~ProductHero.2f6d9696cb0008a42db8.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 3085/7833 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/Feature.b6c57c8cfa1e538741b4.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 2740/8258 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/FeaturedGames.7f9180f5c041719d09d9.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 2944/9339 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/HighlightedRow.2a47b6601e43137ef9ff.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1218/3288 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/main.df8a5fde466fe44aef51.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 334243/1121906 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/PressLogos.322770d0f8cd66a52ec9.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1328/3656 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/ProductHero.d89009348799e91dd9f1.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 3858/11924 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/Stat.1dca464eb5ebf1276ede.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1336/3791 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/Stats.33c19d5ad2835d1c7fef.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1744/5403 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/Testimonials.646a118ddc6d0a2c30e2.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 1866/5751 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/vendors~Buzz~Callout~Checkout~DailyBurn~DailyBurnModal~Description~DidYouKnow~DownloadHero~Feature~G~52f27a85.25fea766101463618f68.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 21344/60806 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/vendors~Checkout~CtaButton~FormatRelative~GameDetail~GameDetailScreenV2~GameDetailScreenV3~GameDirec~d21c73ab.26c1ae33e9b334635c94.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 6120/22631 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://d5cm9864f6ued.cloudfront.net/assets/WaybetterWay.9a9776468e799d0ea23f.js
200

1
ok
defer attribute found application/javascript; charset=utf-8, missing X-Content-Type-Options nosniff

Cache-Control: max-age=31557600 - with long duration found.
GZip: 2303/6947 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://static.zdassets.com/ekr/snippet.js?key=18d28936-699b-48eb-a2fc-8a2e7ecb9be8
200

1
ok
Missing defer / async attribute. application/javascript, missing X-Content-Type-Options nosniff

Cache-Control: public, max-age=3600, s-maxage=60 - max-age too short.
GZip: 5532/19987 Bytes




Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns-1301.awsdns-34.org, ns-1903.awsdns-45.co.uk, ns-672.awsdns-20.net, ns-7.awsdns-00.com

QNr.DomainTypeNS used
1
org
NS
d.root-servers.net (2001:500:2d::d)

Answer: a0.org.afilias-nst.info, a2.org.afilias-nst.info, b0.org.afilias-nst.org, b2.org.afilias-nst.org, c0.org.afilias-nst.info, d0.org.afilias-nst.org
2
ns-1301.awsdns-34.org
NS
a0.org.afilias-nst.info (2001:500:e::1)

Answer: g-ns-1061.awsdns-34.org, g-ns-162.awsdns-34.org, g-ns-1634.awsdns-34.org, g-ns-740.awsdns-34.org

Answer: g-ns-1061.awsdns-34.org
205.251.196.37, 2600:9000:5304:2500::1

Answer: g-ns-162.awsdns-34.org
205.251.192.162, 2600:9000:5300:a200::1

Answer: g-ns-1634.awsdns-34.org
205.251.198.98, 2600:9000:5306:6200::1

Answer: g-ns-740.awsdns-34.org
205.251.194.228, 2600:9000:5302:e400::1
3
uk
NS
b.root-servers.net (2001:500:200::b)

Answer: dns1.nic.uk, dns2.nic.uk, dns3.nic.uk, dns4.nic.uk, nsa.nic.uk, nsb.nic.uk, nsc.nic.uk, nsd.nic.uk
4
ns-1903.awsdns-45.co.uk
NS
dns1.nic.uk (2a01:618:400::1)

Answer: g-ns-1520.awsdns-45.co.uk, g-ns-1841.awsdns-45.co.uk, g-ns-365.awsdns-45.co.uk, g-ns-941.awsdns-45.co.uk

Answer: g-ns-1520.awsdns-45.co.uk
205.251.197.240, 2600:9000:5305:f000::1

Answer: g-ns-1841.awsdns-45.co.uk
205.251.199.49, 2600:9000:5307:3100::1

Answer: g-ns-365.awsdns-45.co.uk
205.251.193.109, 2600:9000:5301:6d00::1

Answer: g-ns-941.awsdns-45.co.uk
205.251.195.173, 2600:9000:5303:ad00::1
5
net
NS
a.root-servers.net (2001:503:ba3e::2:30)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
6
ns-672.awsdns-20.net
NS
a.gtld-servers.net (2001:503:a83e::2:30)

Answer: g-ns-1364.awsdns-20.net, g-ns-1940.awsdns-20.net, g-ns-469.awsdns-20.net, g-ns-790.awsdns-20.net

Answer: g-ns-1364.awsdns-20.net
205.251.197.84, 2600:9000:5305:5400::1

Answer: g-ns-1940.awsdns-20.net
205.251.199.148, 2600:9000:5307:9400::1

Answer: g-ns-469.awsdns-20.net
205.251.193.213, 2600:9000:5301:d500::1

Answer: g-ns-790.awsdns-20.net
205.251.195.22, 2600:9000:5303:1600::1
7
com
NS
a.root-servers.net (2001:503:ba3e::2:30)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
8
ns-7.awsdns-00.com
NS
b.gtld-servers.net (2001:503:231d::2:30)

Answer: g-ns-1.awsdns-00.com, g-ns-1152.awsdns-00.com, g-ns-1728.awsdns-00.com, g-ns-576.awsdns-00.com

Answer: g-ns-1.awsdns-00.com
205.251.192.1, 2600:9000:5300:100::1

Answer: g-ns-1152.awsdns-00.com
205.251.196.128, 2600:9000:5304:8000::1

Answer: g-ns-1728.awsdns-00.com
205.251.198.192, 2600:9000:5306:c000::1

Answer: g-ns-576.awsdns-00.com
205.251.194.64, 2600:9000:5302:4000::1
9
ns-1301.awsdns-34.org: 205.251.197.21
A
g-ns-1061.awsdns-34.org (2600:9000:5304:2500::1)
10
ns-1301.awsdns-34.org: 2600:9000:5305:1500::1
AAAA
g-ns-1061.awsdns-34.org (2600:9000:5304:2500::1)
11
ns-1903.awsdns-45.co.uk: 205.251.199.111
A
g-ns-1520.awsdns-45.co.uk (2600:9000:5305:f000::1)
12
ns-1903.awsdns-45.co.uk: 2600:9000:5307:6f00::1
AAAA
g-ns-1520.awsdns-45.co.uk (2600:9000:5305:f000::1)
13
ns-672.awsdns-20.net: 205.251.194.160
A
g-ns-1364.awsdns-20.net (2600:9000:5305:5400::1)
14
ns-672.awsdns-20.net: 2600:9000:5302:a000::1
AAAA
g-ns-1364.awsdns-20.net (2600:9000:5305:5400::1)
15
ns-7.awsdns-00.com: 205.251.192.7
A
g-ns-1.awsdns-00.com (2600:9000:5300:100::1)
16
ns-7.awsdns-00.com: 2600:9000:5300:700::1
AAAA
g-ns-1.awsdns-00.com (2600:9000:5300:100::1)


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
accounts.waybetterdev.com
0

no CAA entry found
1
0
waybetterdev.com
0

no CAA entry found
1
0
com
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
waybetterdev.com
google-site-verification=yeu_h3VYNVCQIg0h59OhwLJmA1NfrSKVp8HW7jL5b1o
ok
1
0
waybetterdev.com
google-site-verification=ZCr4N6kZscxAbt5CXSEr3J9YBbvoVrJ4XUFAk6tQg_c
ok
1
0
waybetterdev.com
v=spf1 include:_spf.google.com ?all
ok
1
0
accounts.waybetterdev.com

ok
1
0
_acme-challenge.accounts.waybetterdev.com

Name Error - The domain name does not exist
1
0
_acme-challenge.accounts.waybetterdev.com.waybetterdev.com

Name Error - The domain name does not exist
1
0
_acme-challenge.accounts.waybetterdev.com.accounts.waybetterdev.com

Name Error - The domain name does not exist
1
0


15. Portchecks

No Port checks



Permalink: https://check-your-website.server-daten.de/?i=0055392d-8cfc-4dc8-afae-34e5e1ea0539


Last Result: https://check-your-website.server-daten.de/?q=accounts.waybetterdev.com - 2021-10-13 14:54:04


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=accounts.waybetterdev.com" target="_blank">Check this Site: accounts.waybetterdev.com</a>