Check DNS, Urls + Redirects, Certificates and Content of your Website


 

 

 

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
m.tiktok.com
CNAME
m.tiktok.com.edgesuite.net
yes
1
0

CNAME
a2047.r.akamai.net
yes


www.m.tiktok.com

Name Error
yes
1
0
m.tiktok.com
A
104.121.76.58
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.59
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.64
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.65
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.66
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.67
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.72
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.73
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no



A
104.121.76.74
Berlin/Land Berlin/Germany (DE) - Akamai International, BV
No Hostname found
no


*.tiktok.com
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes


*.m.tiktok.com
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes


 

2. DNSSEC

Zone (*)DNSSEC - Informations


Zone: (root)

(root)
1 DS RR published






DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=






Status: Valid because published






3 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 20038, Flags 256






Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 61050, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.10.2024, 00:00:00 +, Signature-Inception: 01.10.2024, 00:00:00 +, KeyTag 20326, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: com

com
1 DS RR in the parent zone found






DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=






1 RRSIG RR to validate DS RR found






RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 15.10.2024, 21:00:00 +, Signature-Inception: 02.10.2024, 20:00:00 +, KeyTag 61050, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 61050 used to validate the DS RRSet in the parent zone






2 DNSKEY RR found






Public Key with Algorithm 13, KeyTag 19718, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 13, KeyTag 59354, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner com., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 09.10.2024, 14:02:35 +, Signature-Inception: 24.09.2024, 13:57:35 +, KeyTag 19718, Signer-Name: com






Status: Good - Algorithmus 13 and DNSKEY with KeyTag 19718 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest "isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: tiktok.com

tiktok.com
0 DS RR in the parent zone found






DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "bnd4ekce0m8uu5v6fdugl0q4nbg30ntq" between the hashed NSEC3-owner "bnd4eb3tkkmv5ecpec7ijt372ijq5v6h" and the hashed NextOwner "bnd4jl7e2qdk8k4b90bd70dav4qs45qr". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner bnd4eb3tkkmv5ecpec7ijt372ijq5v6h.com., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 09.10.2024, 01:42:57 +, Signature-Inception: 02.10.2024, 00:32:57 +, KeyTag 59354, Signer-Name: com






DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q3udg8cekkae7rukpgct1dvssh8ll". So that domain name is the Closest Encloser of "tiktok.com". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 07.10.2024, 00:26:10 +, Signature-Inception: 29.09.2024, 23:16:10 +, KeyTag 59354, Signer-Name: com






0 DNSKEY RR found









Zone: m.tiktok.com

m.tiktok.com
0 DS RR in the parent zone found



Zone: www.m.tiktok.com

www.m.tiktok.com
0 DS RR in the parent zone found



Zone: (root)

(root)
1 DS RR published






DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=






Status: Valid because published






3 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 20038, Flags 256






Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 61050, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.10.2024, 00:00:00 +, Signature-Inception: 01.10.2024, 00:00:00 +, KeyTag 20326, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: net

net
1 DS RR in the parent zone found






DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=






1 RRSIG RR to validate DS RR found






RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 15.10.2024, 21:00:00 +, Signature-Inception: 02.10.2024, 20:00:00 +, KeyTag 61050, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 61050 used to validate the DS RRSet in the parent zone






2 DNSKEY RR found






Public Key with Algorithm 13, KeyTag 37331, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 13, KeyTag 42924, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner net., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 09.10.2024, 14:10:35 +, Signature-Inception: 24.09.2024, 14:05:35 +, KeyTag 37331, Signer-Name: net






Status: Good - Algorithmus 13 and DNSKEY with KeyTag 37331 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest "LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: edgesuite.net

edgesuite.net
0 DS RR in the parent zone found






DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "b5jlejrq6ofj80h5u7q4o81i7nvel95j" between the hashed NSEC3-owner "b5jjd28mfhk2qeo58rnoojnf8s5loi6t" and the hashed NextOwner "b5jo2nu7l5dgkq0jvrubr7tffki5kjn0". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner b5jjd28mfhk2qeo58rnoojnf8s5loi6t.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 07.10.2024, 02:54:29 +, Signature-Inception: 30.09.2024, 01:44:29 +, KeyTag 42924, Signer-Name: net






DS-Query in the parent zone sends valid NSEC3 RR with the Hash "a1rt98bs5qgc9nfi51s9hci47uljg6jh" as Owner. That's the Hash of "net" with the NextHashedOwnerName "a1rtlnpgulogn7b9a62shje1u3ttp8dr". So that domain name is the Closest Encloser of "edgesuite.net". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner a1rt98bs5qgc9nfi51s9hci47uljg6jh.net., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 07.10.2024, 03:02:12 +, Signature-Inception: 30.09.2024, 01:52:12 +, KeyTag 42924, Signer-Name: net






0 DNSKEY RR found









Zone: com.edgesuite.net

com.edgesuite.net
0 DS RR in the parent zone found



Zone: tiktok.com.edgesuite.net

tiktok.com.edgesuite.net
0 DS RR in the parent zone found






0 DNSKEY RR found









Zone: m.tiktok.com.edgesuite.net

m.tiktok.com.edgesuite.net
0 DS RR in the parent zone found

 

3. Name Servers

DomainNameserverNS-IP
www.m.tiktok.com
  ns-440.awsdns-55.com

tiktok.com
  ns-1475.awsdns-56.org / 3bc1110bbbbbfb19153f993895ce402d -
205.251.197.195
Herndon/Virginia/United States (US) - Amazon.com


 
2600:9000:5305:c300::1
New York/United States (US) - Amazon.com


  ns-1574.awsdns-04.co.uk / 562755093988256af8b35ca10fcabfa8 -
205.251.198.38
Ashburn/Virginia/United States (US) - Amazon.com


 
2600:9000:5306:2600::1
Seattle/Washington/United States (US) - Amazon.com


  ns-440.awsdns-55.com / fb00ebabeaa4f53da7d34115db3f1d9f -
205.251.193.184
Ashburn/Virginia/United States (US) - Amazon.com


 
2600:9000:5301:b800::1
Seattle/Washington/United States (US) - Amazon.com


  ns-722.awsdns-26.net / df5672f57e53322b89d3d80d264b7a2e -
205.251.194.210
Ashburn/Virginia/United States (US) - Amazon.com


 
2600:9000:5302:d200::1
Seattle/Washington/United States (US) - Amazon.com

com
  a.gtld-servers.net / nnn1-par6


  b.gtld-servers.net / nnn1-elwaw4


  c.gtld-servers.net / nnn1-par6


  d.gtld-servers.net / nnn1-defra-5


  e.gtld-servers.net / nnn1-defra-5


  f.gtld-servers.net / nnn1-defra-4


  g.gtld-servers.net / nnn1-defra-4


  h.gtld-servers.net / nnn1-defra-4


  i.gtld-servers.net / nnn1-defra-4


  j.gtld-servers.net / nnn1-frmrs-2


  k.gtld-servers.net / nnn1-frmrs-2


  l.gtld-servers.net / nnn1-frmrs-2


  m.gtld-servers.net / nnn1-frmrs-2


tiktok.com.edgesuite.net
  ns1-2.akamai.com

edgesuite.net
  a11-64.akam.net
84.53.139.64
Los Angeles/California/United States (US) - Akamai Technologies


 
2600:1480:1::40
Los Angeles/California/United States (US) - Akamai International B.V.


  a1-2.akam.net
193.108.91.2
Paris/Île-de-France/France (FR) - Akamai International B.V.


 
2600:1401:2::2
Seattle/Washington/United States (US) - Akamai International B.V.


  a12-64.akam.net
184.26.160.64
Sterling/Virginia/United States (US) - Akamai International B.V.


 
2600:1480:f000::40
Cambridge/Massachusetts/United States (US) - Akamai International B.V.


  a13-64.akam.net
2.22.230.64
Madrid/Spain (ES) - Akamai Technologies


 
2600:1480:800::40
Warsaw/Mazovia/Poland (PL) - Akamai International B.V.


  a14-67.akam.net
184.26.161.67
New York/United States (US) - Akamai International B.V.


 
2600:1480:1800::43
Newark/New Jersey/United States (US) - Akamai International B.V.


  a18-64.akam.net
95.101.36.64
Warsaw/Mazovia/Poland (PL) - Akamai Technologies


 
2600:1480:4800::40
Warsaw/Mazovia/Poland (PL) - Akamai International B.V.


  a24-64.akam.net
2.16.130.64
Frankfurt am Main/Hesse/Germany (DE) - Akamai Technologies


 
2600:1480:9800::40
Frankfurt am Main/Hesse/Germany (DE) - Akamai International B.V.


  a28-64.akam.net
95.100.173.64
London/England/United Kingdom (GB) - Akamai Technologies


 
2600:1480:d800::40
Newark/New Jersey/United States (US) - Akamai International B.V.


  a3-64.akam.net
96.7.49.64
Cambridge/Massachusetts/United States (US) - Akamai International B.V.


 
2600:1408:1c::40
Springfield/Illinois/United States (US) - Akamai International B.V.


  a5-64.akam.net
95.100.168.64
Milan/Lombardy/Italy (IT) - Akamai Technologies


 
2600:1480:b000::40
Washington/District of Columbia/United States (US) - Akamai International B.V.


  a6-64.akam.net
23.211.133.64
Washington/District of Columbia/United States (US) - Akamai International B.V.


 
2600:1401:1::40
Frankfurt am Main/Hesse/Germany (DE) - Akamai International B.V.


  a9-64.akam.net
184.85.248.64
Los Angeles/California/United States (US) - Akamai International B.V.


 
2a02:26f0:117::40
Cambridge/Massachusetts/United States (US) - Akamai International B.V


  a9-65.akam.net
184.85.248.65
Los Angeles/California/United States (US) - Akamai International B.V.


 
2a02:26f0:117::41
Cambridge/Massachusetts/United States (US) - Akamai International B.V


  adns3.akam.net
184.26.161.67
New York/United States (US) - Akamai International B.V.


  ns1-2.akam.net
193.108.91.2
Paris/Île-de-France/France (FR) - Akamai International B.V.


 
2600:1401:2::2
Seattle/Washington/United States (US) - Akamai International B.V.


  ns1-2.akamai.com


  usw6.akam.net
23.61.199.64
Cambridge/Massachusetts/United States (US) - Akamai International B.V.

net
  a.gtld-servers.net / nnn1-defra-5


  b.gtld-servers.net / nnn1-elwaw4


  c.gtld-servers.net / nnn1-par6


  d.gtld-servers.net / nnn1-par6


  e.gtld-servers.net / nnn1-par6


  f.gtld-servers.net / nnn1-defra-4


  g.gtld-servers.net / nnn1-defra-4


  h.gtld-servers.net / nnn1-defra-4


  i.gtld-servers.net / nnn1-defra-4


  j.gtld-servers.net / nnn1-frmrs-2


  k.gtld-servers.net / nnn1-frmrs-2


  l.gtld-servers.net / nnn1-frmrs-2


  m.gtld-servers.net / nnn1-frmrs-2

 

4. SOA-Entries


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1727914687
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:9


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1727914702
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:4


Domain:tiktok.com
Zone-Name:tiktok.com
Primary:ns-440.awsdns-55.com
Mail:awsdns-hostmaster.amazon.com
Serial:1
Refresh:7200
Retry:900
Expire:1209600
TTL:86400
num Entries:8


Domain:www.m.tiktok.com
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1



Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1727914702
Refresh:1800
Retry:900
Expire:604800
TTL:900
num Entries:1


Domain:net
Zone-Name:net
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1727914717
Refresh:1800
Retry:900
Expire:604800
TTL:900
num Entries:12


Domain:edgesuite.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


Domain:edgesuite.net
Zone-Name:edgesuite.net
Primary:ns1-2.akamai.com
Mail:hostmaster.akamai.com
Serial:1579812276
Refresh:900
Retry:300
Expire:604800
TTL:180
num Entries:30


Domain:tiktok.com.edgesuite.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:1


5. Screenshots

Startaddress: https://www.tiktok.com/explore, address used: https://www.tiktok.com/explore, Screenshot created 2024-10-03 02:24:19 +00:0 url is insecure, certificate invalid

 

Mobil (412px x 732px)

 

1339 milliseconds

 

Screenshot mobile - https://www.tiktok.com/explore
Mobil + Landscape (732px x 412px)

 

1270 milliseconds

 

Screenshot mobile landscape - https://www.tiktok.com/explore
Screen (1280px x 1680px)

 

1427 milliseconds

 

Screenshot Desktop - https://www.tiktok.com/explore

 

Mobile- and other Chrome-Checks


widthheight
visual Viewport404716
content Size6883230

 

Fatal: Horizontal scrollbar detected. Content-size width is greater then visual Viewport width.

 

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://m.tiktok.com/
104.121.76.58
301
https://m.tiktok.com/

0.017
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:34 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=1, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.59
301
https://m.tiktok.com/

0.023
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:34 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.64
301
https://m.tiktok.com/

0.017
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:34 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.65
301
https://m.tiktok.com/

0.017
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:34 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.66
301
https://m.tiktok.com/

0.017
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:35 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.67
301
https://m.tiktok.com/

0.013
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:35 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.72
301
https://m.tiktok.com/

0.006
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:35 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.73
301
https://m.tiktok.com/

0.000
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:35 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/
104.121.76.74
301
https://m.tiktok.com/

0.013
A
Server: AkamaiGHost
Location: https://m.tiktok.com/
Date: Thu, 03 Oct 2024 00:22:35 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• https://m.tiktok.com/
104.121.76.58
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.090
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 015bd8bb19396503314619c664a1adbdb7b867301a7feee1fcc6982f8c7483ec2dfdb81ad2a93cdd3b539c56ce880b1f51
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; upgrade-insecure-requests ; worker-src m.tiktok.com/sw.js; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; report-to csp-endpoint
Server: TLB
X-TT-LOGID: 20241003002234D2742D12C2085AEE072E
X-Origin-Response-Time: 2,23.55.100.144
Date: Thu, 03 Oct 2024 00:22:35 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=93, origin; dur=2
X-Parent-Response-Time: 94,104.121.76.78
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.59
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.254
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 01ea11ab42b94fb5cf26ffed0fdc33cb8e36389039d59f2f4ee8eb44a6b0a20a6eb2e0c38acc6b2bca14f3c65df740f227
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; worker-src m.tiktok.com/sw.js; report-to csp-endpoint; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; upgrade-insecure-requests ; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com
Server: TLB
X-TT-LOGID: 20241003002237A83C0412B15EB4EEE5F1
X-Origin-Response-Time: 4,23.55.100.201
Date: Thu, 03 Oct 2024 00:22:38 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=96, origin; dur=4
X-Parent-Response-Time: 98,104.121.76.69
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.64
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.103
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 014899dd3ee194c33d56688eeb8ee40a3d398d838bee78ef842f113f9feebec5a0282370c110b386faf4be027e653c94df
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; report-to csp-endpoint; worker-src m.tiktok.com/sw.js; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; upgrade-insecure-requests ; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com
Server: TLB
X-TT-LOGID: 20241003002240E08B8A04C4B60AED07D7
X-Origin-Response-Time: 2,23.55.100.134
Date: Thu, 03 Oct 2024 00:22:41 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=90, origin; dur=2
X-Parent-Response-Time: 92,104.121.76.70
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.65
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.093
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 01b88546f4193b9e7a28da07beab309585bc5835d709252548e8fac99d464e0be04bbf1eac65ad8d48ecc70bf8faf66bbb
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: report-to csp-endpoint; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; upgrade-insecure-requests ; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; worker-src m.tiktok.com/sw.js
Server: TLB
X-TT-LOGID: 2024100300224356F2120CCEE118EF6B24
X-Origin-Response-Time: 3,23.32.17.22
Date: Thu, 03 Oct 2024 00:22:44 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=3
X-Parent-Response-Time: 94,104.121.76.69
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.66
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.124
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 013bedc4d7dc182e38cf3fac56d0992c2ad6089e3abf8b83253d85644271461ef4b1163e2a5e7828cc6b7c30eeb17e3832
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; worker-src m.tiktok.com/sw.js; upgrade-insecure-requests ; report-to csp-endpoint; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1
Server: TLB
X-TT-LOGID: 202410030022461C9B0971D94A07EDDE5D
X-Origin-Response-Time: 2,23.46.15.13
Date: Thu, 03 Oct 2024 00:22:47 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=2
X-Parent-Response-Time: 93,104.121.76.68
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.67
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.067
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 0189b8efbfa1fd2ccb270f3e1123b06ea1e3649a366e97e0b70e13d1af2e46588a28b5064117c738ccab120b4ccfdfabc8
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; upgrade-insecure-requests ; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; worker-src m.tiktok.com/sw.js; report-to csp-endpoint
Server: TLB
X-TT-LOGID: 202410030022487D76DA5F2CFB6AEC386E
X-Origin-Response-Time: 3,23.55.100.132
Date: Thu, 03 Oct 2024 00:22:49 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=91, origin; dur=3
X-Parent-Response-Time: 94,104.121.76.54
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.72
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.270
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 011d2e35b3b5fb35c5e15b5ac6a8db1f7632c0e1b4f9207499f3cd5ead15c7a0a580ac7bd4b3705457328e357274fad08f
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; upgrade-insecure-requests ; worker-src m.tiktok.com/sw.js; report-to csp-endpoint; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com
Server: TLB
X-TT-LOGID: 2024100300225188E835D736D771F0236A
X-Origin-Response-Time: 5,23.55.100.139
Date: Thu, 03 Oct 2024 00:22:52 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=270, origin; dur=5
X-Parent-Response-Time: 274,104.121.76.77
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.73
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.083
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 01a3ab43931e766e0766a3c57805922dc2cdb63d6e310d4da0b56804e15e662952ec27fdd6b1f4ba4dcd395589ae5fa376
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; upgrade-insecure-requests ; worker-src m.tiktok.com/sw.js; report-to csp-endpoint
Server: TLB
X-TT-LOGID: 20241003002254FC408485489B60E98EE3
X-Origin-Response-Time: 2,23.55.100.133
Date: Thu, 03 Oct 2024 00:22:55 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=92, origin; dur=1
X-Parent-Response-Time: 93,104.121.76.71
Content-Type: text/html
Content-Length: 136

• https://m.tiktok.com/
104.121.76.74
302
https://www.tiktok.com/
Html is minified: 111.48 %
2.083
A
Location: https://www.tiktok.com/
Proxy-Status: 0000201302026000
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 011d2e35b3b5fb35c5e15b5ac6a8db1f763fff00ffd1c3855f6b7bcf1b7eb93ee1c050be5fb1ab28f18c6d9ac64d956f58
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; report-to csp-endpoint; worker-src m.tiktok.com/sw.js; report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; upgrade-insecure-requests
Server: TLB
X-TT-LOGID: 20241003002257F33BCACC0AE241EA41A8
X-Origin-Response-Time: 1,23.55.100.139
Date: Thu, 03 Oct 2024 00:22:58 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=92, origin; dur=1
X-Parent-Response-Time: 93,104.121.76.71
Content-Type: text/html
Content-Length: 136

• https://www.tiktok.com/

302
https://www.tiktok.com/explore
Html is minified: 100.00 %
2.270
B
Content-Security-Policy: script-src 'unsafe-eval' sf16-website-login.neutral.ttwstatic.com s20.tiktokcdn.com *.tiktokcdn-us.com www.google.com recaptcha.google.com js.hcaptcha.com client-api.arkoselabs.com www.gstatic.com connect.facebook.net; frame-src *.tiktok.com accounts.google.com www.google.com recaptcha.google.com www.facebook.com *.kakao.com lf16-web.tiktokcdn.com assets.braintreegateway.com appleid.apple.com access.line.me api.twitter.com h.online-metrix.net bytedance: newassets.hcaptcha.com client-api.arkoselabs.com; worker-src https: blob:; frame-ancestors tea-va.bytedance.net www.tiktok.com; report-to csp-endpoint; report-uri https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=c5d3976a-6361-465d-8622-8af792b254ba; upgrade-insecure-requests ; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: wss://*.tiktok.com wss://*.tiktokv.com wss://*.tiktokv.eu wss://tiktok.com wss://tiktokv.com *.adsco.re *.adsintegrity.net *.akamaized.net *.amazonaws.com *.bing.com *.bitssec.com *.bytedapm.com *.bytedgame.com *.bytehwm-row.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteintlstatic.com *.bytelemon.com *.byteoversea.com *.byteoversea.net *.bytevcloudapi.com *.capcut.com *.cloudflare.com *.ctfassets.net *.doubleclick.net *.evbuc.com *.eventim.de *.facebook.com *.facebook.net *.fbsbx.com *.fcdnstatic-intl.com *.fdmstatic.com *.g-p-static.com *.gauthmath.com *.goofy-cdn.com *.goofy.app *.google-analytics.com *.google.ae *.google.at *.google.be *.google.bg *.google.bj *.google.by *.google.ca *.google.ch *.google.co.cr *.google.co.id *.google.co.il *.google.co.jp *.google.co.kr *.google.co.ma *.google.co.nz *.google.co.uk *.google.co.za *.google.com *.google.com.ar *.google.com.au *.google.com.bd *.google.com.br *.google.com.cy *.google.com.do *.google.com.ec *.google.com.gh *.google.com.lb *.google.com.mt *.google.com.my *.google.com.ng *.google.com.pe *.google.com.pk *.google.com.sa *.google.com.sg *.google.com.tr *.google.cz *.google.de *.google.dk *.google.dz *.google.ee *.google.es *.google.fi *.google.fr *.google.gr *.google.hr *.google.hu *.google.ie *.google.iq *.google.is *.google.it *.google.lt *.google.lu *.google.lv *.google.md *.google.nl *.google.no *.google.pl *.google.ps *.google.pt *.google.ro *.google.rs *.google.se *.google.si *.google.sk *.google.td *.google.tn *.googleapis.com *.googletagmanager.com *.gstatic.com *.hsforms.com *.hsforms.net *.ibytedtos.com *.ibyteimg.com *.isnssdk.com *.jumio.ai *.kakao.com *.lemon8-app.com *.lemon8cdn.com *.licdn.com *.linkedin.com *.midtrans.com *.muscdn.com *.musical.ly *.oecstatic.com *.omise.co *.pangle-ads.com *.paypal.com *.pipopay.com *.redditstatic.com *.resso.me *.sgsnssdk.com *.soundon.global *.tableau.com *.tiktok-row.net *.tiktok.com *.tiktok.ru *.tiktok.vn *.tiktokapis.com *.tiktokcdn-eu.com *.tiktokcdn-in.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokcreativeone.com *.tiktokforbusinessoutbound.com *.tiktokglobalshop.com *.tiktokmusic.me *.tiktokshop.com *.tiktokstaticb.com *.tiktokus.info *.tiktokv.com *.tiktokv.eu *.tiktokv.us *.tiktokw.eu *.tiktokw.us *.topbuzzcdn.com *.ttlivecdn.com *.ttlstatic.com *.ttwstatic.com *.vimeo.com *.vodupload.com *.yahoo.co.jp *.yhgfb-static.com *.youtube-nocookie.com *.zhiliaoapp.com code.jquery.com facebook.com google.com i.ticketweb.com images.universe.com media.ticketmaster.eu res.cloudinary.com s1.ticketm.net static-label.frontgatetickets.com t.co tikitoks.com tiktok.com tiktok.ua tiktok.vn tiktokfollowersfree.com tiktokv.com unpkg.com vimeo.com; connect-src * 'unsafe-inline' blob: data:
Feature-Policy: microphone 'none'; geolocation 'none'
Location: /explore
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-Bytefaas-Execution-Duration: 53.52
X-Bytefaas-Request-Id: 20241003002334420CC3FB1A7226A6393D
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gw-Dst-Psm: serverless.tiktok.desktop
X-Powered-By: Goofy Node
X-Tt-Logid: 20241003002334420CC3FB1A7226A6393D
X-XSS-Protection: 1; mode=block
Server-Timing: inner; dur=56,cdn-cache; desc=MISS, edge; dur=10, origin; dur=148
x-tt-trace-host: 014dfec0f934a6da59563216d286f45b329e7e9d44ccdd33455632404256dbaca67c87bc98685474fb98c2062937f7b2b1f537fdb400b50abe3279f8247ecb1ddd678f1a6b638f2c31e46990f2af21d0dd70322bd2bb9332fd64d567f998be0282
x-tt-trace-id: 00-241003002334420CC3FB1A7226A6393D-4B2DE07E80A2B04E-00
reporting-endpoints: csp-endpoint="https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Server: TLB
Cache-Control: no-store, no-cache, max-age=0
Pragma: no-cache
Date: Thu, 03 Oct 2024 00:23:35 GMT
X-Cache: TCP_MISS from a104-121-76-71.deploy.akamaitechnologies.com (AkamaiGHost/11.6.3-f27d542afa37241d2fddd9371d528b09) (-)
Connection: keep-alive
Set-Cookie: tt_csrf_token=hmudDWjg-NYB6-iw-ccN--TmMPTcM2J1g1XY; path=/; domain=.tiktok.com; samesite=lax; secure; httponly,ttwid=1%7CJANDSlYTRL1floPQiDZWjt0SvbXWarNps_BFFhQ5NJ4%7C1727915015%7Cd3abd0ad575a1e0aa156a3526306e6ad50a3206e01a6d065f8700a522ee38352; Domain=.tiktok.com; Path=/; Expires=Sun, 28 Sep 2025 00:23:35 GMT; HttpOnly
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
X-Origin-Response-Time: 149,104.121.76.71
X-Akamai-Request-ID: 4142593
Content-Type: text/html; charset=utf-8
Content-Length: 47
Expires: Thu, 03 Oct 2024 00:23:35 GMT

• https://www.tiktok.com/explore
br used - 45078 / 178281 - 74.72 %
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 9/4870
200

Html is minified: 103.43 %
Other inline scripts (∑/total): 5/159525
2.300
I
Content-Security-Policy: script-src 'unsafe-eval' sf16-website-login.neutral.ttwstatic.com s20.tiktokcdn.com *.tiktokcdn-us.com www.google.com recaptcha.google.com js.hcaptcha.com client-api.arkoselabs.com www.gstatic.com connect.facebook.net; frame-src *.tiktok.com accounts.google.com www.google.com recaptcha.google.com www.facebook.com *.kakao.com lf16-web.tiktokcdn.com assets.braintreegateway.com appleid.apple.com access.line.me api.twitter.com h.online-metrix.net bytedance: newassets.hcaptcha.com client-api.arkoselabs.com; worker-src https: blob:; frame-ancestors tea-va.bytedance.net www.tiktok.com; upgrade-insecure-requests ; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: wss://*.tiktok.com wss://*.tiktokv.com wss://*.tiktokv.eu wss://tiktok.com wss://tiktokv.com *.adsco.re *.adsintegrity.net *.akamaized.net *.amazonaws.com *.arkoselabs.com *.billetlugen.dk *.bing.com *.bitssec.com *.bytedapm.com *.bytedgame.com *.bytehwm-row.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteintlstatic.com *.bytelemon.com *.byteoversea.com *.byteoversea.net *.bytevcloudapi.com *.capcut.com *.cloudflare.com *.ctfassets.net *.doubleclick.net *.entradas.com *.evbuc.com *.eventim.de *.facebook.com *.facebook.net *.fbsbx.com *.fcdnstatic-intl.com *.fdmstatic.com *.g-p-static.com *.gauthmath.com *.giphy.com *.goofy-cdn.com *.goofy.app *.google-analytics.com *.google.ae *.google.at *.google.be *.google.bg *.google.bj *.google.by *.google.ca *.google.ch *.google.co.cr *.google.co.id *.google.co.il *.google.co.jp *.google.co.kr *.google.co.ma *.google.co.nz *.google.co.uk *.google.co.za *.google.com *.google.com.ar *.google.com.au *.google.com.bd *.google.com.br *.google.com.cy *.google.com.do *.google.com.ec *.google.com.gh *.google.com.lb *.google.com.mt *.google.com.my *.google.com.ng *.google.com.pe *.google.com.pk *.google.com.sa *.google.com.sg *.google.com.tr *.google.cz *.google.de *.google.dk *.google.dz *.google.ee *.google.es *.google.fi *.google.fr *.google.gr *.google.hr *.google.hu *.google.ie *.google.iq *.google.is *.google.it *.google.lt *.google.lu *.google.lv *.google.md *.google.nl *.google.no *.google.pl *.google.ps *.google.pt *.google.ro *.google.rs *.google.se *.google.si *.google.sk *.google.td *.google.tn *.googleapis.com *.googletagmanager.com *.gstatic.com *.hsforms.com *.hsforms.net *.ibytedtos.com *.ibyteimg.com *.isnssdk.com *.jumio.ai *.kakao.com *.lemon8-app.com *.lemon8cdn.com *.licdn.com *.linkedin.com *.midtrans.com *.muscdn.com *.musical.ly *.oecstatic.com *.omise.co *.pangle-ads.com *.paypal.com *.pipopay.com *.redditstatic.com *.resso.me *.sgsnssdk.com *.soundon.global *.tableau.com *.tenor.com *.tiktok-row.net *.tiktok.com *.tiktok.ru *.tiktok.vn *.tiktokapis.com *.tiktokcdn-eu.com *.tiktokcdn-in.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokcreativeone.com *.tiktokforbusinessoutbound.com *.tiktokglobalshop.com *.tiktokmusic.me *.tiktokshop.com *.tiktokstaticb.com *.tiktokus.info *.tiktokv.com *.tiktokv.eu *.tiktokv.us *.tiktokw.eu *.tiktokw.us *.topbuzzcdn.com *.ttlivecdn.com *.ttlstatic.com *.ttwstatic.com *.vimeo.com *.vodupload.com *.yahoo.co.jp *.yhgfb-static.com *.youtube-nocookie.com *.zhiliaoapp.com code.jquery.com facebook.com google.com i.ticketweb.com images.universe.com media.ticketmaster.eu res.cloudinary.com s1.ticketm.net static-label.frontgatetickets.com t.co tikitoks.com tiktok.com tiktok.ua tiktok.vn tiktokfollowersfree.com tiktokv.com unpkg.com vimeo.com; report-uri https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=988610fa-4298-4be2-9c6d-db19c4ddae23&scene=1; report-to csp-endpoint
Feature-Policy: microphone 'none'; geolocation 'none'
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-Bytefaas-Execution-Duration: 83.37
X-Bytefaas-Request-Id: 2024100300234048479C645D58A898814B
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Gw-Dst-Psm: serverless.tiktok.desktop
X-Powered-By: Goofy Node
X-Pumbaa-Web-Avail: 1
X-Tt-Logid: 2024100300234048479C645D58A898814B
X-XSS-Protection: 1; mode=block
x-tt-trace-host: 014dfec0f934a6da59563216d286f45b32dfc734fe8c004eb266ccd472ce2130ff4caea05d64a379700423a0827c59c5a7c4eda141fbcf3d98ce826bf447d1b80630f0ba65d5d24a7eb22b386b0bf2e35d39ff2dfc6b60a372db726b13b15d036f32873e4915feffe7771218885d77f9cd
x-tt-trace-id: 00-24100300234048479C645D58A898814B-7ECB70D860D5E348-00
reporting-endpoints: csp-endpoint="https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
content-security-policy-report-only: report-uri https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=988610fa-4298-4be2-9c6d-db19c4ddae23&scene=1;report-to csp-endpoint;script-src 'unsafe-eval' apis.google.com c.paypal.com cdn.ampproject.org cdnjs.cloudflare.com client-api.arkoselabs.com code.jquery.com connect.facebook.net developers.kakao.com googleads.g.doubleclick.net googletagmanager.com js.hcaptcha.com js.hsforms.net pay.google.com recaptcha.google.com s20.tiktokcdn.com s3.amazonaws.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com ssl.bing.com ssl.google-analytics.com unpkg.com vimeo.com www.google-analytics.com www.google.com www.googleadservices.com www.googleapis.com www.googletagmanager.com www.gstatic.com www.vimeo.com;worker-src www.tiktok.com/business/sw.js www.tiktok.com/embed/sw.js www.tiktok.com/firebase-messaging-sw.js www.tiktok.com/help/sw.js www.tiktok.com/live/creator-networks/pdf.worker.min.js www.tiktok.com/live/static/player-worker/ www.tiktok.com/risk-appeal-ocr/BlinkCardWasmSDK.worker.min.js www.tiktok.com/sw.js
Server: TLB
X-Origin-Response-Time: 89,23.32.17.30
X-Akamai-Request-ID: 207791e.41426d7
Cache-Control: no-store, no-cache, max-age=0
Pragma: no-cache
Date: Thu, 03 Oct 2024 00:23:41 GMT
Transfer-Encoding: chunked
X-Cache: TCP_MISS from a104-121-76-71.deploy.akamaitechnologies.com (AkamaiGHost/11.6.3-f27d542afa37241d2fddd9371d528b09) (-)
Connection: keep-alive,Transfer-Encoding
Set-Cookie: tt_chain_token=YwtYu3yYI7vh6LUH/loeXw==; path=/; expires=Tue, 01 Apr 2025 00:23:41 GMT; domain=.tiktok.com; secure; httponly
X-Cache-Remote: TCP_MISS from a23-32-17-30.deploy.akamaitechnologies.com (AkamaiGHost/11.6.3-f27d542afa37241d2fddd9371d528b09) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=98, origin; dur=89,inner; dur=85
X-Parent-Response-Time: 187,104.121.76.71
Content-Type: text/html; charset=utf-8
Content-Encoding: br
Expires: Thu, 03 Oct 2024 00:23:41 GMT
Content-Length: 45078

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.58
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.016
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.59
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.000
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.64
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.013
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.65
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.016
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.66
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.013
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.67
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.017
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=1, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.72
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.017
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.73
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.017
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• http://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.121.76.74
301
https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

0.017
A
Visible Content:
Server: AkamaiGHost
Location: https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Date: Thu, 03 Oct 2024 00:23:01 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=0, origin; dur=0
Content-Length: 0

• https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
502

Html is minified: 110.45 %
Other inline scripts (∑/total): 0/0
2.114
S
Bad Gateway
Visible Content:
Proxy-Status: 0000201502005104
Strict-Transport-Security: max-age=31536000
x-tt-trace-host: 0187f15aadf9578692d99c5fdfad7a337b0b1ff7a7b1d317ad34750af2336e689b5b8cfb74c1235dcd1dd8d34a3377d16e
reporting-endpoints: csp-endpoint="https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns"
Content-Security-Policy: report-uri https://mon.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=ffac422c-8194-4c6e-ba74-192500b353b7&scene=1; script-src 'unsafe-eval' s20.tiktokcdn.com sf16-website-login.neutral.ttwstatic.com sf16-website.neutral.ttwstatic.com; worker-src m.tiktok.com/sw.js; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: *.akamaized.net *.bytedapm.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteoversea.com *.byteoversea.net *.facebook.com *.facebook.net *.fbsbx.com *.g-p-static.com *.goofy-cdn.com *.googleapis.com *.gstatic.com *.ibytedtos.com *.ibyteimg.com *.musical.ly *.pipopay.com *.pipopayment.com *.pipopayment.us *.tiktok.com *.tiktokcdn-eu.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokv.com *.tiktokv.us *.tiktokw.eu *.ttwstatic.com *.yhgfb-static.com tiktok.com; upgrade-insecure-requests ; report-to csp-endpoint
Server: TLB
X-TT-LOGID: 2024100300233747B175C257977DF00BEB
X-Origin-Response-Time: 6,23.213.246.132
Date: Thu, 03 Oct 2024 00:23:38 GMT
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
Server-Timing: cdn-cache; desc=MISS, edge; dur=92, origin; dur=6
X-Parent-Response-Time: 97,104.121.76.69
Content-Type: text/html
Content-Length: 148

• https://104.121.76.58/
104.121.76.58
400

Html is minified: 100.00 %
2.903
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:02 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:02 GMT

• https://104.121.76.59/
104.121.76.59
400

Html is minified: 100.00 %
2.896
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:06 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:06 GMT

• https://104.121.76.64/
104.121.76.64
400

Html is minified: 100.00 %
2.880
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:09 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:09 GMT

• https://104.121.76.65/
104.121.76.65
400

Html is minified: 100.00 %
2.893
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:13 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:13 GMT

• https://104.121.76.66/
104.121.76.66
400

Html is minified: 100.00 %
2.940
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:17 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:17 GMT

• https://104.121.76.67/
104.121.76.67
400

Html is minified: 100.00 %
2.906
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:20 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:20 GMT

• https://104.121.76.72/
104.121.76.72
400

Html is minified: 100.00 %
2.900
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:24 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:24 GMT

• https://104.121.76.73/
104.121.76.73
400

Html is minified: 100.00 %
2.920
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:28 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:28 GMT

• https://104.121.76.74/
104.121.76.74
400

Html is minified: 100.00 %
2.903
N
Bad Request
Certificate error: RemoteCertificateNameMismatch
Server: AkamaiGHost
Mime-Version: 1.0
Date: Thu, 03 Oct 2024 00:23:31 GMT
Connection: close
Content-Type: text/html
Content-Length: 310
Expires: Thu, 03 Oct 2024 00:23:31 GMT

 

7. Comments


1. General Results, most used to calculate the result

Aname "m.tiktok.com" is subdomain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 97057 (complete: 251685)
AGood: All ip addresses are public addresses
AGood: No asked Authoritative Name Server had a timeout
ADNS: "Name Error" means: No www-dns-entry defined. This isn't a problem
Ahttps://www.tiktok.com/
302
https://www.tiktok.com/explore
Correct redirect https to https
AGood: destination is https
AGood - only one version with Http-Status 200
AGood: one preferred version: www is preferred
AGood: No cookie sent via http.
AExcellent: Main Domain is in the Google-Preload-List
AExcellent: Main Domain is in the Mozilla/Firefox-Preload-List
AHSTS-Preload-Status: Preloaded. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://m.tiktok.com/ 104.121.76.58
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.59
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.64
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.65
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.66
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.67
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.72
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.73
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Ahttp://m.tiktok.com/ 104.121.76.74
301
https://m.tiktok.com/
Correct redirect http - https with the same domain name
Bhttps://www.tiktok.com/
302
ttwid=1%7CJANDSlYTRL1floPQiDZWjt0SvbXWarNps_BFFhQ5NJ4%7C1727915015%7Cd3abd0ad575a1e0aa156a3526306e6ad50a3206e01a6d065f8700a522ee38352; Domain=.tiktok.com; Path=/; Expires=Sun, 28 Sep 2025 00:23:35 GMT; HttpOnly
Cookie sent via https, but not marked as secure
Bhttps://www.tiktok.com/
302
ttwid=1%7CJANDSlYTRL1floPQiDZWjt0SvbXWarNps_BFFhQ5NJ4%7C1727915015%7Cd3abd0ad575a1e0aa156a3526306e6ad50a3206e01a6d065f8700a522ee38352; Domain=.tiktok.com; Path=/; Expires=Sun, 28 Sep 2025 00:23:35 GMT; HttpOnly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://www.tiktok.com/explore
200
tt_chain_token=YwtYu3yYI7vh6LUH/loeXw==; path=/; expires=Tue, 01 Apr 2025 00:23:41 GMT; domain=.tiktok.com; secure; httponly
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Ihttps://www.tiktok.com/explore
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Mhttps://104.121.76.58/ 104.121.76.58
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.59/ 104.121.76.59
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.64/ 104.121.76.64
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.65/ 104.121.76.65
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.66/ 104.121.76.66
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.67/ 104.121.76.67
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.72/ 104.121.76.72
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.73/ 104.121.76.73
400

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://104.121.76.74/ 104.121.76.74
400

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://104.121.76.58/ 104.121.76.58
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.59/ 104.121.76.59
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.64/ 104.121.76.64
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.65/ 104.121.76.65
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.66/ 104.121.76.66
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.67/ 104.121.76.67
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.72/ 104.121.76.72
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.73/ 104.121.76.73
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://104.121.76.74/ 104.121.76.74
400

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
BNo _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.m.tiktok.com

2. Header-Checks (Cross-Origin-* headers are alpha - started 2024-06-05)

Awww.tiktok.com
Content-Security-Policy
Ok: Header without syntax errors found: script-src 'unsafe-eval' sf16-website-login.neutral.ttwstatic.com s20.tiktokcdn.com *.tiktokcdn-us.com www.google.com recaptcha.google.com js.hcaptcha.com client-api.arkoselabs.com www.gstatic.com connect.facebook.net; frame-src *.tiktok.com accounts.google.com www.google.com recaptcha.google.com www.facebook.com *.kakao.com lf16-web.tiktokcdn.com assets.braintreegateway.com appleid.apple.com access.line.me api.twitter.com h.online-metrix.net bytedance: newassets.hcaptcha.com client-api.arkoselabs.com; worker-src https: blob:; frame-ancestors tea-va.bytedance.net www.tiktok.com; upgrade-insecure-requests ; default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: bytedance: data: wss://*.tiktok.com wss://*.tiktokv.com wss://*.tiktokv.eu wss://tiktok.com wss://tiktokv.com *.adsco.re *.adsintegrity.net *.akamaized.net *.amazonaws.com *.arkoselabs.com *.billetlugen.dk *.bing.com *.bitssec.com *.bytedapm.com *.bytedgame.com *.bytehwm-row.com *.byteicdn.com *.byteintl.com *.byteintl.net *.byteintlapi.com *.byteintlstatic.com *.bytelemon.com *.byteoversea.com *.byteoversea.net *.bytevcloudapi.com *.capcut.com *.cloudflare.com *.ctfassets.net *.doubleclick.net *.entradas.com *.evbuc.com *.eventim.de *.facebook.com *.facebook.net *.fbsbx.com *.fcdnstatic-intl.com *.fdmstatic.com *.g-p-static.com *.gauthmath.com *.giphy.com *.goofy-cdn.com *.goofy.app *.google-analytics.com *.google.ae *.google.at *.google.be *.google.bg *.google.bj *.google.by *.google.ca *.google.ch *.google.co.cr *.google.co.id *.google.co.il *.google.co.jp *.google.co.kr *.google.co.ma *.google.co.nz *.google.co.uk *.google.co.za *.google.com *.google.com.ar *.google.com.au *.google.com.bd *.google.com.br *.google.com.cy *.google.com.do *.google.com.ec *.google.com.gh *.google.com.lb *.google.com.mt *.google.com.my *.google.com.ng *.google.com.pe *.google.com.pk *.google.com.sa *.google.com.sg *.google.com.tr *.google.cz *.google.de *.google.dk *.google.dz *.google.ee *.google.es *.google.fi *.google.fr *.google.gr *.google.hr *.google.hu *.google.ie *.google.iq *.google.is *.google.it *.google.lt *.google.lu *.google.lv *.google.md *.google.nl *.google.no *.google.pl *.google.ps *.google.pt *.google.ro *.google.rs *.google.se *.google.si *.google.sk *.google.td *.google.tn *.googleapis.com *.googletagmanager.com *.gstatic.com *.hsforms.com *.hsforms.net *.ibytedtos.com *.ibyteimg.com *.isnssdk.com *.jumio.ai *.kakao.com *.lemon8-app.com *.lemon8cdn.com *.licdn.com *.linkedin.com *.midtrans.com *.muscdn.com *.musical.ly *.oecstatic.com *.omise.co *.pangle-ads.com *.paypal.com *.pipopay.com *.redditstatic.com *.resso.me *.sgsnssdk.com *.soundon.global *.tableau.com *.tenor.com *.tiktok-row.net *.tiktok.com *.tiktok.ru *.tiktok.vn *.tiktokapis.com *.tiktokcdn-eu.com *.tiktokcdn-in.com *.tiktokcdn-us.com *.tiktokcdn.com *.tiktokcreativeone.com *.tiktokforbusinessoutbound.com *.tiktokglobalshop.com *.tiktokmusic.me *.tiktokshop.com *.tiktokstaticb.com *.tiktokus.info *.tiktokv.com *.tiktokv.eu *.tiktokv.us *.tiktokw.eu *.tiktokw.us *.topbuzzcdn.com *.ttlivecdn.com *.ttlstatic.com *.ttwstatic.com *.vimeo.com *.vodupload.com *.yahoo.co.jp *.yhgfb-static.com *.youtube-nocookie.com *.zhiliaoapp.com code.jquery.com facebook.com google.com i.ticketweb.com images.universe.com media.ticketmaster.eu res.cloudinary.com s1.ticketm.net static-label.frontgatetickets.com t.co tikitoks.com tiktok.com tiktok.ua tiktok.vn tiktokfollowersfree.com tiktokv.com unpkg.com vimeo.com; report-uri https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=988610fa-4298-4be2-9c6d-db19c4ddae23&scene=1; report-to csp-endpoint
B

Info: Header-Element is deprecated. report-uri https://mon-i18n.tiktokv.com/monitor_browser/collect/batch/security/?bid=tiktok_pns&ev_type=csp&revision=988610fa-4298-4be2-9c6d-db19c4ddae23&scene=1
F

Bad: default-src with "*" or a scheme found. That allows too much, don't use such a definition.
F

Bad: default-src with 'unsafe-inline' or 'unsave-eval'. That's dangerous, don't use it.
E

Bad: No form-action directive found. Use one to limit the form - action - destinations. form-action is a navigation-directive, so default-src isn't used.
A

Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
E

Bad: No base-uri directive found. Use one to limit the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
E

Critical: No object-src defined, the default-src used as fallback allows too much. object / embed / applet shouldn't be able to load these resources.
F

Critical: script-src with 'unsafe-inline' or 'unsafe-eval' and without a nonce found. That's dangerous, don't use it. If you really need one of these unsafe directives, add a nonce.
A

Good: script-src without * and a scheme found.
A

Good: script-src without data: schema found. Why is this important? The data: schema allows hidden code injection. Insert <script src='data:application/javascript;base64,YWxlcnQoJ1hTUycpOw=='></script> in your page and see what happens.
A

Good: frame-src without data: defined or frame-src missing and the default-src used as fallback not allows the data: schema. That blocks hidden code injection. Insert <iframe src="data:text/html;charset=utf-8;base64,PCFET0NUWVBFIGh0bWw+PGh0bWw+PGJvZHk+PHA+YmVmb3JlPHNjcmlwdCB0eXBlPSJ0ZXh0L2phdmFzY3JpcHQiPmFsZXJ0KCdYU1MnKTwvc2NyaXB0PjxwPmFmdGVyPC9ib2R5PjwvaHRtbD4="></iframe> in your page and see what happens.
C

Info: default-src and some other fetch directives have the same list of values. Remove the other fetch directive, default-src is used as fallback. Directives to remove: csp-endpoint
A
X-Content-Type-Options
Ok: Header without syntax errors found: nosniff
A
Referrer-Policy
Ok: Header without syntax errors found: strict-origin-when-cross-origin
A
X-Frame-Options
Ok: Header without syntax errors found: SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A
Feature-Policy
Ok: Header without syntax errors found: microphone 'none'; geolocation 'none'
B

Info: Header is deprecated. May not longer work in modern browsers. microphone 'none'; geolocation 'none'
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
Fwww.tiktok.com
Permissions-Policy
Critical: Missing Header:
Bwww.tiktok.com
Cross-Origin-Embedder-Policy
Info: Missing Header
Bwww.tiktok.com
Cross-Origin-Opener-Policy
Info: Missing Header
Bwww.tiktok.com
Cross-Origin-Resource-Policy
Info: Missing Header

3. DNS- and NameServer - Checks

AInfo:: 16 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 4 Name Servers.
AInfo:: 16 Queries complete, 16 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
Ok (4 - 8):: An average of 4.0 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 4 different Name Servers found: ns-1475.awsdns-56.org, ns-1574.awsdns-04.co.uk, ns-440.awsdns-55.com, ns-722.awsdns-26.net, 4 Name Servers included in Delegation: ns-1475.awsdns-56.org, ns-1574.awsdns-04.co.uk, ns-440.awsdns-55.com, ns-722.awsdns-26.net, 4 Name Servers included in 1 Zone definitions: ns-1475.awsdns-56.org, ns-1574.awsdns-04.co.uk, ns-440.awsdns-55.com, ns-722.awsdns-26.net, 1 Name Servers listed in SOA.Primary: ns-440.awsdns-55.com.
AGood: Only one SOA.Primary Name Server found.: ns-440.awsdns-55.com.
AGood: SOA.Primary Name Server included in the delegation set.: ns-440.awsdns-55.com.
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AInfo: Ipv4-Subnet-list: 4 Name Servers, 1 different subnets (first Byte): 205., 1 different subnets (first two Bytes): 205.251., 4 different subnets (first three Bytes): 205.251.193., 205.251.194., 205.251.197., 205.251.198.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 4 Name Servers with IPv6, 1 different subnets (first block): 2600:, 1 different subnets (first two blocks): 2600:9000:, 4 different subnets (first three blocks): 2600:9000:5301:, 2600:9000:5302:, 2600:9000:5305:, 2600:9000:5306:, 4 different subnets (first four blocks): 2600:9000:5301:b800:, 2600:9000:5302:d200:, 2600:9000:5305:c300:, 2600:9000:5306:2600:
AGood: Name Server IPv6 addresses from different subnets found.
AGood: Nameserver supports TCP connections: 8 good Nameserver
AGood: Nameserver supports Echo Capitalization: 8 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
Nameserver doesn't pass all EDNS-Checks: ns1-2.akamai.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: ns1-2.akamai.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
Nameserver doesn't pass all EDNS-Checks: ns-440.awsdns-55.com: OP100: no result. FLAGS: no result. V1: no result. V1OP100: no result. V1FLAGS: no result. DNSSEC: no result. V1DNSSEC: no result. NSID: no result. COOKIE: no result. CLIENTSUBNET: no result.
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

4. Content- and Performance-critical Checks

https://m.tiktok.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
502

Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 500 - 599, Server Error. Creating a Letsencrypt certificate via http-01 challenge can't work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
https://www.tiktok.com/explore
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
AGood: Every https result with status 200 has a minified Html-Content with a quota lower then 110 %.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
https://www.tiktok.com/explore
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
AGood: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 35 external CSS / JavaScript files found
AGood: All CSS / JavaScript files are sent with a long Cache-Control header (minimum 7 days). So the browser can re-use these files, no download is required. 18 external CSS / JavaScript files with long Cache-Control max-age found
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
AInfo: Different Server-Headers found
ADuration: 357343 milliseconds, 357.343 seconds

 

8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
m.tiktok.com
104.121.76.58
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
m.tiktok.com
104.121.76.58
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.59
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.59
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.64
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.64
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.65
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.65
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.66
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.66
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.67
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.67
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.72
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.72
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.73
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.73
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
104.121.76.74
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
104.121.76.74
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


www.tiktok.com
www.tiktok.com
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

www.tiktok.com
www.tiktok.com
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=*.www.tiktok.com


2CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US


3CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US


www.tiktok.com
www.tiktok.com
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

www.tiktok.com
www.tiktok.com
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain - too much certificates, don't send root certificates

1CN=*.www.tiktok.com


2CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US


3CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US


m.tiktok.com
m.tiktok.com
443
ok
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
supported
ok

m.tiktok.com
m.tiktok.com
443
ok
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.tiktok.com


2CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US


104.121.76.58
104.121.76.58
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.58
104.121.76.58
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.59
104.121.76.59
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.59
104.121.76.59
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.64
104.121.76.64
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.64
104.121.76.64
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.65
104.121.76.65
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.65
104.121.76.65
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.66
104.121.76.66
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.66
104.121.76.66
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.67
104.121.76.67
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.67
104.121.76.67
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.72
104.121.76.72
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.72
104.121.76.72
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.73
104.121.76.73
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.73
104.121.76.73
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US


104.121.76.74
104.121.76.74
443
name does not match
Tls12
ECDH Ephermal
256
Aes128
128
Sha256
supported
ok

104.121.76.74
104.121.76.74
443
name does not match
Tls12

ECDH Ephermal
256
Aes128
128
Sha256
supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, C=US, ST=Massachusetts


2CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US

 

9. Certificates

1.
1.
CN=*.tiktok.com
15.07.2024
16.07.2025
expires in 282 days
*.tiktok.com, tiktok.com - 2 entries
1.
1.
CN=*.tiktok.com
15.07.2024

16.07.2025
expires in 282 days


*.tiktok.com, tiktok.com - 2 entries

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:ECDSA SHA256
Serial Number:0EE25DD98A97374C35828195CA401CEA
Thumbprint:B74AE7DD0CDE7715FBD3A6548FFFBC6AFE456C58
SHA256 / Certificate:Gi/jor5GQfMzMna3DblqaQstCl8vwukG8X5cDGUguPc=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):01022762ae3fa3e01ba32adc52c5cc25679390737d2127551ace4b1effef16bc
SHA256 hex / Subject Public Key Information (SPKI):01022762ae3fa3e01ba32adc52c5cc25679390737d2127551ace4b1effef16bc (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://status.rapidssl.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
02.11.2017
02.11.2027
expires in 1121 days


2.
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
02.11.2017

02.11.2027
expires in 1121 days




KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:ECDSA SHA256
Serial Number:0DED78965349B368D41F7EE3E1EED1EB
Thumbprint:4C4780EAB1A3627794DC0F285E5947D7D8D86370
SHA256 / Certificate:/BbVMgO9kYfWnMmdLaVRB2tNyymBQNZ1H3oBKWbJn90=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):701b5488efa6c1d80c7cd784a7fa8ab841ecc119f69c7a7614350a562fda4c3c
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




3.
CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US
01.08.2013
15.01.2038
expires in 4848 days


3.
CN=DigiCert Global Root G3, OU=www.digicert.com, O=DigiCert Inc, C=US
01.08.2013

15.01.2038
expires in 4848 days




KeyalgorithmEC Public Key (384 bit, secp384r1)
Signatur:ECDSA SHA384
Serial Number:055556BCF25EA43535C3A40FD5AB4572
Thumbprint:7E04DE896A3E666D00E687D33FFAD93BE83D349E
SHA256 / Certificate:Ma1mSPgQQTjHOPOepDIBMzk+OhjMAilu+Xwqye9nMdA=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):b94c198300cec5c057ad0727b70bbe91816992256439a7b32f4598119dda9c97
SHA256 hex / Subject Public Key Information (SPKI):b94c198300cec5c057ad0727b70bbe91816992256439a7b32f4598119dda9c97
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




2.
1.
CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, S=Massachusetts, C=US
18.04.2024
20.04.2025
expires in 195 days
a248.e.akamai.net, *.akamaized.net, *.akamaized-staging.net, *.akamaihd.net, *.akamaihd-staging.net - 5 entries
2.
1.
CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, S=Massachusetts, C=US
18.04.2024

20.04.2025
expires in 195 days


a248.e.akamai.net, *.akamaized.net, *.akamaized-staging.net, *.akamaihd.net, *.akamaihd-staging.net - 5 entries

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:0B0EFA6998487092A5D64EC0E7A56EF2
Thumbprint:2839AF637D02E8F71723A0EEE0C92F9C6417680A
SHA256 / Certificate:QLn5+ugGtVcDvAfznkAKbT1hZHO63QSAtAVMMp14vxk=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):42dbf007812700e8e65a03dfbd061fd5f52143942f7d95a15c5c1a2f64204543
SHA256 hex / Subject Public Key Information (SPKI):42dbf007812700e8e65a03dfbd061fd5f52143942f7d95a15c5c1a2f64204543 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, S=Massachusetts, C=US
18.04.2024
20.04.2025
expires in 195 days
a248.e.akamai.net, *.akamaized.net, *.akamaized-staging.net, *.akamaihd.net, *.akamaihd-staging.net - 5 entries

2.
CN=a248.e.akamai.net, O="Akamai Technologies, Inc.", L=Cambridge, S=Massachusetts, C=US
18.04.2024

20.04.2025
expires in 195 days


a248.e.akamai.net, *.akamaized.net, *.akamaized-staging.net, *.akamaihd.net, *.akamaihd-staging.net - 5 entries

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:0B0EFA6998487092A5D64EC0E7A56EF2
Thumbprint:2839AF637D02E8F71723A0EEE0C92F9C6417680A
SHA256 / Certificate:QLn5+ugGtVcDvAfznkAKbT1hZHO63QSAtAVMMp14vxk=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):42dbf007812700e8e65a03dfbd061fd5f52143942f7d95a15c5c1a2f64204543
SHA256 hex / Subject Public Key Information (SPKI):42dbf007812700e8e65a03dfbd061fd5f52143942f7d95a15c5c1a2f64204543 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




3.
CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US
14.04.2021
14.04.2031
expires in 2380 days


3.
CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US
14.04.2021

14.04.2031
expires in 2380 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:06D8D904D5584346F68A2FA754227EC4
Thumbprint:1C58A3A8518E8759BF075B76B750D4F2DF264FCD
SHA256 / Certificate:UidMV85N7jtJ23p/9wjAQPdxiYs76IclqG+0QwGC/hQ=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):450799901e36ce751fb0320815621189811c2a5ee71f0345c160ab9cc3096d57
SHA256 hex / Subject Public Key Information (SPKI):450799901e36ce751fb0320815621189811c2a5ee71f0345c160ab9cc3096d57
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




4.
CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US
14.04.2021
14.04.2031
expires in 2380 days


4.
CN=DigiCert TLS RSA SHA256 2020 CA1, O=DigiCert Inc, C=US
14.04.2021

14.04.2031
expires in 2380 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:06D8D904D5584346F68A2FA754227EC4
Thumbprint:1C58A3A8518E8759BF075B76B750D4F2DF264FCD
SHA256 / Certificate:UidMV85N7jtJ23p/9wjAQPdxiYs76IclqG+0QwGC/hQ=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):450799901e36ce751fb0320815621189811c2a5ee71f0345c160ab9cc3096d57
SHA256 hex / Subject Public Key Information (SPKI):450799901e36ce751fb0320815621189811c2a5ee71f0345c160ab9cc3096d57
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




5.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006
10.11.2031
expires in 2590 days


5.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006

10.11.2031
expires in 2590 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:083BE056904246B1A1756AC95991C74A
Thumbprint:A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436
SHA256 / Certificate:Q0ig6URMeMsmXgWNXolEtNhPlmK9Jtslf4k0pEPHAWE=
SHA256 hex / Cert (DANE * 0 1):4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:





6.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
07.12.2016
10.05.2025
expires in 215 days


6.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
07.12.2016

10.05.2025
expires in 215 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0F5BC3A176CB789E2020C7893C8167B4
Thumbprint:FB20FA8A6A93B375F054814F9E00273EA51A6138
SHA256 / Certificate:bay7iUUTex2tQhGwQ2774G8SrONpBJc7Ra4ldAgj02k=
SHA256 hex / Cert (DANE * 0 1):6dacbb8945137b1dad4211b0436efbe06f12ace36904973b45ae25740823d369
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




7.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000
13.05.2025
expires in 218 days


7.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000

13.05.2025
expires in 218 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:020000B9
Thumbprint:D4DE20D05E66FC53FE1A50882C78DB2852CAE474
SHA256 / Certificate:Fq9XqfZ2sKsSYJWqXrre8iqzERnWRKyVzUuT2/Pyaus=
SHA256 hex / Cert (DANE * 0 1):16af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb
SHA256 hex / PublicKey (DANE * 1 1):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SHA256 hex / Subject Public Key Information (SPKI):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




3.
1.
CN=*.www.tiktok.com
09.11.2023
10.12.2024
expires in 64 days
*.www.tiktok.com, www.tiktok.com - 2 entries
3.
1.
CN=*.www.tiktok.com
09.11.2023

10.12.2024
expires in 64 days


*.www.tiktok.com, www.tiktok.com - 2 entries

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:ECDSA SHA256
Serial Number:0E6C99682A5582B66BE775E4B7248E9F
Thumbprint:33900696B7A9DD2A317955FB6EF28FC8A5A4463E
SHA256 / Certificate:tSacy9UxjAS1jBbo6T1/KJmRL9uQb+X0nke1550s8zU=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):0709e5a66be6d515539710eaa189812d28c9a6c7c4dae82c965f0c8046c27ed8
SHA256 hex / Subject Public Key Information (SPKI):0709e5a66be6d515539710eaa189812d28c9a6c7c4dae82c965f0c8046c27ed8 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://status.rapidssl.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
06.11.2017
06.11.2027
expires in 1125 days


2.
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
06.11.2017

06.11.2027
expires in 1125 days




KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:0D5E0E1DE231A1C10A1CFC69CDE3B77C
Thumbprint:63B76FFF3B3864EEB549B1E37851D46B603FEDDC
SHA256 / Certificate:oNFSOgv2Y1UOuQgem93toSgU+VcLdpfZXfLqU9T/deM=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):cc96b1e3d8d7356566d76a2e8fe7559a55bfaf4670e0d6e37eca02c55dfe6e53
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




3.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006
10.11.2031
expires in 2590 days


3.
CN=DigiCert Global Root CA, OU=www.digicert.com, O=DigiCert Inc, C=US
10.11.2006

10.11.2031
expires in 2590 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:083BE056904246B1A1756AC95991C74A
Thumbprint:A8985D3A65E5E5C4B2D7D66D40C6DD2FB19C5436
SHA256 / Certificate:Q0ig6URMeMsmXgWNXolEtNhPlmK9Jtslf4k0pEPHAWE=
SHA256 hex / Cert (DANE * 0 1):4348a0e9444c78cb265e058d5e8944b4d84f9662bd26db257f8934a443c70161
SHA256 hex / PublicKey (DANE * 1 1):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SHA256 hex / Subject Public Key Information (SPKI):aff988906dde12955d9bebbf928fdcc31cce328d5b9384f21c8941ca26e20391
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




 

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
0
1
15
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
0
9
13
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
0
2
4
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
0
0
3
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
0
2
2
CN=RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1, O=DigiCert Inc, C=US
0
0
1
CN=GeoTrust Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
0
0
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
7879202399
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-08-06 00:00:00
2025-08-05 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7712422365
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-15 00:00:00
2025-07-15 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7712349599
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-15 00:00:00
2025-07-15 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7712409566
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-15 00:00:00
2025-07-15 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7712338609
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-15 00:00:00
2025-07-15 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7572100944
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-06-24 00:00:00
2025-07-25 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7354494359
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-05-21 00:00:00
2025-05-20 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7250110983
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-05-03 00:00:00
2025-06-03 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7215677312
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-04-28 00:00:00
2025-05-29 23:59:59
*.tiktok.com, tiktok.com - 2 entries


7151714894
precert
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-04-18 00:00:00
2025-04-17 23:59:59
*.tiktok.com, tiktok.com - 2 entries


6826335514
precert
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-02-26 00:00:00
2025-03-28 23:59:59
*.tiktok.com, tiktok.com - 2 entries


6414683564
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-12-22 00:00:00
2025-01-21 23:59:59
*.tiktok.com, tiktok.com - 2 entries


6238074377
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-11-23 00:00:00
2024-12-23 23:59:59
*.tiktok.com, tiktok.com - 2 entries


6102032387
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-10-31 00:00:00
2024-11-30 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5741035789
leaf cert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-08-25 00:00:00
2024-09-24 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5618651349
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-08-02 00:00:00
2024-09-01 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5543116794
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-18 00:00:00
2024-08-17 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5524846560
precert
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-14 00:00:00
2024-08-13 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5524835026
precert
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-14 00:00:00
2024-08-13 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5524806399
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-07-14 00:00:00
2024-08-13 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5524826305
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-07-14 00:00:00
2024-08-13 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5472034222
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-03 00:00:00
2024-08-02 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5458357360
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-06-30 00:00:00
2024-07-30 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5414048017
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-06-21 00:00:00
2024-07-21 23:59:59
*.tiktok.com, tiktok.com - 2 entries


5375070238
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-06-13 00:00:00
2024-06-11 23:59:59
*.tiktok.com, tiktok.com - 2 entries


4939173776
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-03-13 00:00:00
2024-04-12 23:59:59
*.tiktok.com, tiktok.com - 2 entries


4939190541
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-03-13 00:00:00
2024-04-12 23:59:59
*.tiktok.com, tiktok.com - 2 entries


4581433417
precert
CN=GeoTrust Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-12-22 00:00:00
2023-12-21 23:59:59
*.bytedance.com, *.feishu.cn, *.larksuite.com, *.tiktok.com, bytedance.com, feishu.cn, larksuite.com, tiktok.com - 8 entries


4552536258
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-12-15 00:00:00
2024-01-15 23:59:59
*.tiktok.com, tiktok.com - 2 entries


4552520443
precert
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
2022-12-15 00:00:00
2024-01-15 23:59:59
*.tiktok.com, tiktok.com - 2 entries


4449509951
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-11-21 00:00:00
2023-12-22 23:59:59
*.tiktok.com, tiktok.com - 2 entries


4088653324
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-08-22 00:00:00
2023-09-22 23:59:59
*.tiktok.com, tiktok.com - 2 entries


3977942856
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-07-23 00:00:00
2023-08-23 23:59:59
*.tiktok.com, tiktok.com - 2 entries


3977894752
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-07-23 00:00:00
2023-08-23 23:59:59
*.tiktok.com, tiktok.com - 2 entries


3959448693
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-07-18 00:00:00
2023-07-17 23:59:59
*.tiktok.com, tiktok.com - 2 entries


3897485386
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-06-30 00:00:00
2023-07-31 23:59:59
*.tiktok.com, tiktok.com - 2 entries


3890133817
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-06-28 00:00:00
2023-06-27 23:59:59
*.tiktok.com - 1 entries


3873142979
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-06-23 00:00:00
2023-07-24 23:59:59
*.tiktok.com, tiktok.com - 2 entries


3501776634
precert
CN=RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1, O=DigiCert Inc, C=US
2022-03-10 00:00:00
2023-04-10 23:59:59
*.tiktok.com, tiktok.com - 2 entries


 

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuerlast 7 daysactivenum Certs
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
0
10
14
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
0
1
9
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
0
2
4
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
0
0
3
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
0
2
2
CN=GeoTrust Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
0
0
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
14322853128
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-08-26 22:00:00
2025-08-26 21:59:59
*.tiktok.com, tiktok.com
2 entries


14013522246
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-08-05 22:00:00
2025-08-05 21:59:59
*.tiktok.com, tiktok.com
2 entries


13742992834
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-14 22:00:00
2025-07-15 21:59:59
*.tiktok.com, tiktok.com
2 entries


13742852418
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-14 22:00:00
2025-07-15 21:59:59
*.tiktok.com, tiktok.com
2 entries


13742808807
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-14 22:00:00
2025-07-15 21:59:59
*.tiktok.com, tiktok.com
2 entries


13742965153
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-07-14 22:00:00
2025-07-15 21:59:59
*.tiktok.com, tiktok.com
2 entries


13506085202
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-06-23 22:00:00
2025-07-25 21:59:59
*.tiktok.com, tiktok.com
2 entries


13123776454
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-05-20 22:00:00
2025-05-20 21:59:59
*.tiktok.com, tiktok.com
2 entries


12941568119
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-05-02 22:00:00
2025-06-03 21:59:59
*.tiktok.com, tiktok.com
2 entries


12881498005
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-04-27 22:00:00
2025-05-29 21:59:59
*.tiktok.com, tiktok.com
2 entries


12767431388
precert
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-04-17 22:00:00
2025-04-17 21:59:59
*.tiktok.com, tiktok.com
2 entries


12199026551
precert
CN=GeoTrust TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2024-02-25 23:00:00
2025-03-28 22:59:59
*.tiktok.com, tiktok.com
2 entries


11410031142
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-12-21 23:00:00
2025-01-21 22:59:59
*.tiktok.com, tiktok.com
2 entries


11190931617
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-11-22 23:00:00
2024-12-23 22:59:59
*.tiktok.com, tiktok.com
2 entries


10951065034
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-10-30 23:00:00
2024-11-30 22:59:59
*.tiktok.com, tiktok.com
2 entries


10567340260
leaf cert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-08-24 22:00:00
2024-09-24 21:59:59
*.tiktok.com, tiktok.com
2 entries


10041802389
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-08-01 22:00:00
2024-09-01 21:59:59
*.tiktok.com, tiktok.com
2 entries


9930340055
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-17 22:00:00
2024-08-17 21:59:59
*.tiktok.com, tiktok.com
2 entries


11203255864
leaf cert
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-13 22:00:00
2024-08-13 21:59:59
*.tiktok.com, tiktok.com
2 entries


11014794059
leaf cert
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-13 22:00:00
2024-08-13 21:59:59
*.tiktok.com, tiktok.com
2 entries


9900446047
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-07-13 22:00:00
2024-08-13 21:59:59
*.tiktok.com, tiktok.com
2 entries


9900423527
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-07-13 22:00:00
2024-08-13 21:59:59
*.tiktok.com, tiktok.com
2 entries


9814784640
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-07-02 22:00:00
2024-08-02 21:59:59
*.tiktok.com, tiktok.com
2 entries


9790940466
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2023-06-29 22:00:00
2024-07-30 21:59:59
*.tiktok.com, tiktok.com
2 entries


9707759098
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-06-20 22:00:00
2024-07-21 21:59:59
*.tiktok.com, tiktok.com
2 entries


9640518902
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-06-12 22:00:00
2024-06-11 21:59:59
*.tiktok.com, tiktok.com
2 entries


8873423537
precert
CN=RapidSSL TLS ECC CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-03-12 23:00:00
2024-04-12 21:59:59
*.tiktok.com, tiktok.com
2 entries


8872453514
precert
CN=RapidSSL TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
2023-03-12 23:00:00
2024-04-12 21:59:59
*.tiktok.com, tiktok.com
2 entries


8258787524
precert
CN=GeoTrust Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-12-21 23:00:00
2023-12-21 22:59:59
*.bytedance.com, *.feishu.cn, *.larksuite.com, *.tiktok.com, bytedance.com, feishu.cn, larksuite.com, tiktok.com
8 entries


8205269002
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-12-14 23:00:00
2024-01-15 22:59:59
*.tiktok.com, tiktok.com
2 entries


8205239512
precert
CN=RapidSSL ECC CA 2018, OU=www.digicert.com, O=DigiCert Inc, C=US
2022-12-14 23:00:00
2024-01-15 22:59:59
*.tiktok.com, tiktok.com
2 entries


8026084206
precert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-11-20 23:00:00
2023-12-22 22:59:59
*.tiktok.com, tiktok.com
2 entries


9040712520
leaf cert
CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1, O="DigiCert, Inc.", C=US
2022-08-21 22:00:00
2023-09-22 21:59:59
*.tiktok.com, tiktok.com
2 entries


 

11. Html-Content - Entries

Summary


Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://www.tiktok.com/explore
a

1

0


0
0
0


link
other
19
1,194,140 Bytes
17
0
17
17
0
0
-17

meta
other
3

0


0
0
0


script

18
1,214,170 Bytes
18
0
18
18
0
0
-18

 

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://www.tiktok.com/explore

a




1
ok















link
manifest
/manifest.json


1
ok















link
preconnect
https://sf16-website-login.neutral.ttwstatic.com


1
ok















link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/es-polyfill.9ac310947b4427cf28b2.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 24096/70812 Bytes






ETag: 7fc7217b-639e-440a-bde5-2e46794d6a67

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-tJyTAlRPIgHP9Lfp5NCTO6ngVIjZ/VjNy3P60Q1vrgU=
sha384-naFR8GpFyhWEmbvzNIEtJ9G5kNTrsuiwf5kIFfcIXcUqyVDg7O5/SzXMwnnjHC0T
sha512-Il8OfHpUM0z29NKDiyVPy6C/HeV5vtvlqrlANpPQZ1Y31k8T6fQEYYgjNYjZ+Xg7GJl33A0OOV2U0C1kSV9Izg==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/es-polyfill.9ac310947b4427cf28b2.js" crossorigin="anonymous" integrity="sha256-tJyTAlRPIgHP9Lfp5NCTO6ngVIjZ/VjNy3P60Q1vrgU=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-596046b7.0a1ae60586ca5609f0c5.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 11028/35532 Bytes






ETag: e03121ee-e42a-42b3-9f75-289204ad50d0

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-y/MzQvDEYoT6o1jrxxYXb5mDRsiy1EWoER2qlVnzjZc=
sha384-AVRc/0GR5mTAoedUL2SwYuuAGGxT7VmesHDxSQ/74yUzD/W8p15fLykcGg/oEaWb
sha512-nArtUpX5Uo7zgj6+Ave0vM5hm1LgguTn+HYWh4D5jrVqDyLcHAJFcohlg14EghuISxPe6dVnWFxSmz2NVZxc3g==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-596046b7.0a1ae60586ca5609f0c5.js" crossorigin="anonymous" integrity="sha256-y/MzQvDEYoT6o1jrxxYXb5mDRsiy1EWoER2qlVnzjZc=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-74d9c565.94d0676491a58dea5a0c.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 9221/23566 Bytes






ETag: 7bb1edb6-6590-4c8d-9c21-187b34a66a83

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-PcdA2mVpavwgQISjV/8orvsu9GGVaZyncqfUHV2rzNo=
sha384-BHtyc+GdyDXnkyZhtIlJTlpDZwSHaXppHuB44PqRsuOnNxpLosKK1Y2Qj64NmJxR
sha512-FaObFo1RAaLvELT2OY8iiufdsONiTkaD8HxMJrSHcDHr+JL8TAqvPZ5wuvJzAivGE+DgrI7weMfQnWzEV3a0Bw==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-74d9c565.94d0676491a58dea5a0c.js" crossorigin="anonymous" integrity="sha256-PcdA2mVpavwgQISjV/8orvsu9GGVaZyncqfUHV2rzNo=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-async-focus-lock.61ecad7f6cf567ab9ba5.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 5515/15045 Bytes






ETag: e878cec4-1835-48c7-b1a0-3871b44da899

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-mP2jLQhO4TMVNtys6Mgbl2UGe0tbM53HSD0n1Md1VBA=
sha384-kOyszpm0tAxpCRGHt/0E3VNHOnZ+CgJVrAABps5JN5Vz2OrsIo8ktPOerzHSWpue
sha512-S5085b8NTz0zYwKOB5JaQ1sGyldRvDemiDgvwVN3SOc/+7MMxV293qxVaU/Lv0QR63X+ouPU2zFtZx9k2EPWCg==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-async-focus-lock.61ecad7f6cf567ab9ba5.js" crossorigin="anonymous" integrity="sha256-mP2jLQhO4TMVNtys6Mgbl2UGe0tbM53HSD0n1Md1VBA=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-tiktok-icons.4a9f9e31f5ffeff901e2.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 55065/205564 Bytes






ETag: 0ff50f4e-4c8f-4104-9aca-427c71d901b6

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-twv1iJMuqrC5vf7SF10NDwu3EUAelwa6AXFSKodsiMs=
sha384-pPQy9BAi4rJL+QPpj/o70abt37qmQEzDWlD5o3EJo2y60JnT3XMMuIhoCcaljdOs
sha512-364rFZxQkDKnO1Cb6xSOptllAQMAAFMlwDSLGl05ecerY7hqXV+z9jHFP3HoJrHwY8irfeuSJnj3PXgvCdQ/lw==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-tiktok-icons.4a9f9e31f5ffeff901e2.js" crossorigin="anonymous" integrity="sha256-twv1iJMuqrC5vf7SF10NDwu3EUAelwa6AXFSKodsiMs=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-web-privacy-sdk.ea9ef16eed4a55af4146.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 934/1708 Bytes






ETag: 90d2732c-5640-40ec-bdcf-2e6738687f62

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-+eaoL4LUlwLIW0SrvNaxNz4HEg4oMXQruQyGb5KF0Do=
sha384-5tYBc2MVvFWDraPU9LW6IUeBqZrQY6YHTBzljJnSTajzZn4sqcfIDmLeUZRg8KHU
sha512-cfUP2AVVJWVJSh9tZg3dx9k+ZHiwRdk2P34MKOdIj9wV/Sy70TQIKuJyR0aq7m9axi8uAL/32mdTmn8jxjYOTQ==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-web-privacy-sdk.ea9ef16eed4a55af4146.js" crossorigin="anonymous" integrity="sha256-+eaoL4LUlwLIW0SrvNaxNz4HEg4oMXQruQyGb5KF0Do=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-d801507b.090ded7b527e77af6033.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 250834/971917 Bytes






ETag: 9396579a-ba31-4d9d-b554-eb3db23d9a7c

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-gD1eY6ND01FZZ4YCdSeKhNSZgGGsB8wpkgReH6aYA48=
sha384-WmrtuDLaA5kTqnYB7vCUsV0ND7oJK6NecUIXignIuWqltr96wzxmupgNLcoc+Gp/
sha512-luRr0utXQynxzdg02kJK7zIV2vrPzpRx2jX7UV1sfTf+rBDnC9+pF4lv2gBCU60Z0UnHpLZ8CESJzN5zO+eRVg==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-d801507b.090ded7b527e77af6033.js" crossorigin="anonymous" integrity="sha256-gD1eY6ND01FZZ4YCdSeKhNSZgGGsB8wpkgReH6aYA48=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-dp-byted-tea-sdk-oversea.9ab187d0e75cca16e8f5.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 28444/115991 Bytes






ETag: e78d806a-01e5-43a5-903f-774250df5228

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-X6Nax7nTVG5mjyR9XIx6AAi2JlAWmspXJm07aDJR8+g=
sha384-PsHYs9defnwo5kP6X8Krk2IpWkDGim0kH0OLxBOc29to+gQA4fLjoiQ/Lwx77GeU
sha512-wMo/fyOpOSm1bSUwG3c3nLCpR2H2+EVlEKxNUzKuJws4pkPhAgRmvoDHtrKK9LZYeA7sA46bIngHYjvKzrhkzw==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-dp-byted-tea-sdk-oversea.9ab187d0e75cca16e8f5.js" crossorigin="anonymous" integrity="sha256-X6Nax7nTVG5mjyR9XIx6AAi2JlAWmspXJm07aDJR8+g=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-react.5ac8ce03d19fdde08df6.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 55106/187544 Bytes






ETag: 00f6ac8f-d9bd-4538-bd55-afb31046a734

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-T+FG5CVV+/vuL2qrC/vUGaB3lW8NKJCpEaEuJ3XAQS4=
sha384-PLj6sELQyLaoNHxYcDKQWeU/PHffX/S4yf4SpBTTriqjRdTFhHucepCnLByqZwGA
sha512-8mVgiyQx3JrIUm/3jb9EqEK6jdc7Gutv0Oi9cd5MEIjk9cmvjOEa+mEn8QIq4DhCKy76M1ud12WKljcj55bscw==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-react.5ac8ce03d19fdde08df6.js" crossorigin="anonymous" integrity="sha256-T+FG5CVV+/vuL2qrC/vUGaB3lW8NKJCpEaEuJ3XAQS4=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-rxjs.f3c900b6de59b48132b7.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 11079/39857 Bytes






ETag: 8ca68350-ab25-4497-a9e5-6ebe88a7332a

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-0Di8MM9EocQImw1wcFEkfqGHgNyoCB4XvIMvyWdlR3Y=
sha384-iALYFEQdLXD1fBVVMoTw2oZQwNrZSLewGwXAAN7MbX/tAjsgGPzm7+YJAiz0jb8E
sha512-9TYStJ6j7kf7XFNl9Bf6dTHatZP4cz8/Ms7REcXeaKj8m9+sHqRlS3T7vpwl3q2AQLwZmSf1VO4FGTdTFOjT+g==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-rxjs.f3c900b6de59b48132b7.js" crossorigin="anonymous" integrity="sha256-0Di8MM9EocQImw1wcFEkfqGHgNyoCB4XvIMvyWdlR3Y=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-sigi.8aae39198a1dafd151d2.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 8315/32685 Bytes






ETag: 109304c7-d8bb-47ba-a04d-fa7a120aa0e9

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-2qI3P/bedYX9ysU2PN3b+/8HaQAGau20mh28C9obvnE=
sha384-EWAvH3Y/XkvGkcxOr4qbKuS/Q4rAzmu8GWuWimGJorUSaBqW5B+oC+HNQkS5NVHo
sha512-VHCFEeA+s/mDeVLoT7mng72mik8bV17cGN/2ftk6RO86KNuyASL+/ICxOCTlSNw8XfNDNiT+Le1LYrpEOWFX+A==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-sigi.8aae39198a1dafd151d2.js" crossorigin="anonymous" integrity="sha256-2qI3P/bedYX9ysU2PN3b+/8HaQAGau20mh28C9obvnE=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-xg-plugin.7738a1e651beff7bf829.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 165002/596838 Bytes






ETag: 970df00f-2890-4693-88d4-8f370b7a739f

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-tdI8tiW3zz53SFZf3BvKCf/0YG68PnFWUfmLhLgljuw=
sha384-hunU7cQSF1sF5jWMwaMziyDgSzb1+aVt1Xx9gYLHlytMAHsQncUdylG+g5Fz75Ld
sha512-o8F8ww0wSP/q1iE2n3diJku2Md/jYX7dP3O6h53n5qPFys2OJ8k3QoheOd3OWlkg4yrnE0srev7MvVCuAcZCEw==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-xg-plugin.7738a1e651beff7bf829.js" crossorigin="anonymous" integrity="sha256-tdI8tiW3zz53SFZf3BvKCf/0YG68PnFWUfmLhLgljuw=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/runtime.c016bebb43189a021132.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 7662/16425 Bytes






ETag: 267ecd88-a554-4f97-88ee-6961afbb6915

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-beP9TP29tQ0OHtNP0Wqq07kXCQfFW8geypTSmGQt6+8=
sha384-0SJn8XdsXckA2SROfKUyWpSriWwBl1gwibxEvduf+EBm5koz3PCNE62IMQYXoP7U
sha512-WgTudCCfGCEEcwghUKD6Z7vbArcw2i0bmWTDTqNC7zQaq+B1Nt41aVmnbc2VCaN5slHlixShB0yyiTXDN0x/rg==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/runtime.c016bebb43189a021132.js" crossorigin="anonymous" integrity="sha256-beP9TP29tQ0OHtNP0Wqq07kXCQfFW8geypTSmGQt6+8=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/tux-h5-icons.e020fa01bd89e796267e.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 41940/179770 Bytes






ETag: cce480a0-6b37-408c-8631-248fae5d4651

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-JoklHExB+ynkBvvpLViQD0FL/3H5sbzU88esmNByK/Y=
sha384-TdevHpzW3/kWTDkkL8T/VPODHV5cUHEisn/9VloLt1q/IbltL2Hi4vdKLE5qJUBE
sha512-slcUILYV/xhVll9wkleTyvHd3ES6kHdlpz6WQj+eEFEZojUJdjhLe+X9oomFB8L+DGNSwlvhP3Fb3TUnqYeKdA==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/tux-h5-icons.e020fa01bd89e796267e.js" crossorigin="anonymous" integrity="sha256-JoklHExB+ynkBvvpLViQD0FL/3H5sbzU88esmNByK/Y=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/vendor.b00e5a47c57749a0391d.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 226456/722549 Bytes






ETag: e7ad06f2-4f52-4473-9608-47746ca6fec4

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-TbsrElPgK7lHbw5w6CSDY3ugIXrFUcPOkriG4xPhOVo=
sha384-nqeWhnO0LNf9SkGWz5OGV9GCiN4htiYNB9cfwvRXvzV+Vx+lEHMXjt6dDqR5x16B
sha512-KQoM1b2lsj2OKKhL8/aDsjmvf2S2vzED2z6mJJkNQZmqAVuEl+knvxYGKRbT/wFhRI0f1jXLFz9sRChvReskzg==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/vendor.b00e5a47c57749a0391d.js" crossorigin="anonymous" integrity="sha256-TbsrElPgK7lHbw5w6CSDY3ugIXrFUcPOkriG4xPhOVo=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/webapp-desktop-islands.94bef39bda2de1191a89.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 292725/1168567 Bytes






ETag: bc3ffdbf-ca74-4993-8207-45d94ee84e4b

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-QCxuEMRuP9js2au1SeJ/AwuKKGhiD93mYKX8RNU2mSc=
sha384-oQ7Y+toZlt8Q1Et0yaXHKwL8RIE3XiIP9HD+PVq8afkCu/kniaA6u1LFx+c1+9Gm
sha512-UbOExY0X05D1axR+plC0HksKOkp2G65tGMJZvR3tLtEUSQgplbFoNbmnLbCjIRJ4Y/C/j0PdvMyZwdJeOk9GZw==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/webapp-desktop-islands.94bef39bda2de1191a89.js" crossorigin="anonymous" integrity="sha256-QCxuEMRuP9js2au1SeJ/AwuKKGhiD93mYKX8RNU2mSc=" />



link
preload
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok-infra/csp/sdk-pre/slardar.web.pre.js
200

1
Problems with Content-Type - Header - see details
application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (br): 718/1378 Bytes






ETag: 408a9afc-eea2-4df0-ab53-9c7a82e51500

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-vRE78WyCSO1fNVNCN4V/h/Q6zcCZJX7Bp/JlbwUBG2M=
sha384-7ZhHhvs8V1hDj1LagaNoDdrKQatC30zIfIK4/07K7i2us5nxbJk03vVQq8QAJdd+
sha512-Y/zFOYwUcAPr+lX8Cz111qs9PPZSlj6gwA2cDYOZiEaOygF7qFBTZzzSt3wto11IJ5asieEsvpRv3hk0KIiToA==

 

<link rel="preload" href="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok-infra/csp/sdk-pre/slardar.web.pre.js" crossorigin="anonymous" integrity="sha256-vRE78WyCSO1fNVNCN4V/h/Q6zcCZJX7Bp/JlbwUBG2M=" />



meta
charset
UTF-8


1
ok















meta
pumbaa-ctx
login=0,ftc=0


1
ok















meta
viewport
width=device-width,initial-scale=1


1
ok















script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/es-polyfill.9ac310947b4427cf28b2.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 24096/70812 Bytes






ETag: 7fc7217b-639e-440a-bde5-2e46794d6a67

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-tJyTAlRPIgHP9Lfp5NCTO6ngVIjZ/VjNy3P60Q1vrgU=
sha384-naFR8GpFyhWEmbvzNIEtJ9G5kNTrsuiwf5kIFfcIXcUqyVDg7O5/SzXMwnnjHC0T
sha512-Il8OfHpUM0z29NKDiyVPy6C/HeV5vtvlqrlANpPQZ1Y31k8T6fQEYYgjNYjZ+Xg7GJl33A0OOV2U0C1kSV9Izg==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/es-polyfill.9ac310947b4427cf28b2.js" crossorigin="anonymous" integrity="sha256-tJyTAlRPIgHP9Lfp5NCTO6ngVIjZ/VjNy3P60Q1vrgU=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-596046b7.0a1ae60586ca5609f0c5.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 11028/35532 Bytes






ETag: e03121ee-e42a-42b3-9f75-289204ad50d0

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-y/MzQvDEYoT6o1jrxxYXb5mDRsiy1EWoER2qlVnzjZc=
sha384-AVRc/0GR5mTAoedUL2SwYuuAGGxT7VmesHDxSQ/74yUzD/W8p15fLykcGg/oEaWb
sha512-nArtUpX5Uo7zgj6+Ave0vM5hm1LgguTn+HYWh4D5jrVqDyLcHAJFcohlg14EghuISxPe6dVnWFxSmz2NVZxc3g==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-596046b7.0a1ae60586ca5609f0c5.js" crossorigin="anonymous" integrity="sha256-y/MzQvDEYoT6o1jrxxYXb5mDRsiy1EWoER2qlVnzjZc=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-74d9c565.94d0676491a58dea5a0c.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 9221/23566 Bytes






ETag: 7bb1edb6-6590-4c8d-9c21-187b34a66a83

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-PcdA2mVpavwgQISjV/8orvsu9GGVaZyncqfUHV2rzNo=
sha384-BHtyc+GdyDXnkyZhtIlJTlpDZwSHaXppHuB44PqRsuOnNxpLosKK1Y2Qj64NmJxR
sha512-FaObFo1RAaLvELT2OY8iiufdsONiTkaD8HxMJrSHcDHr+JL8TAqvPZ5wuvJzAivGE+DgrI7weMfQnWzEV3a0Bw==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-74d9c565.94d0676491a58dea5a0c.js" crossorigin="anonymous" integrity="sha256-PcdA2mVpavwgQISjV/8orvsu9GGVaZyncqfUHV2rzNo=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-async-focus-lock.61ecad7f6cf567ab9ba5.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 5515/15045 Bytes






ETag: e878cec4-1835-48c7-b1a0-3871b44da899

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-mP2jLQhO4TMVNtys6Mgbl2UGe0tbM53HSD0n1Md1VBA=
sha384-kOyszpm0tAxpCRGHt/0E3VNHOnZ+CgJVrAABps5JN5Vz2OrsIo8ktPOerzHSWpue
sha512-S5085b8NTz0zYwKOB5JaQ1sGyldRvDemiDgvwVN3SOc/+7MMxV293qxVaU/Lv0QR63X+ouPU2zFtZx9k2EPWCg==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-async-focus-lock.61ecad7f6cf567ab9ba5.js" crossorigin="anonymous" integrity="sha256-mP2jLQhO4TMVNtys6Mgbl2UGe0tbM53HSD0n1Md1VBA=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-tiktok-icons.4a9f9e31f5ffeff901e2.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 55065/205564 Bytes






ETag: 0ff50f4e-4c8f-4104-9aca-427c71d901b6

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-twv1iJMuqrC5vf7SF10NDwu3EUAelwa6AXFSKodsiMs=
sha384-pPQy9BAi4rJL+QPpj/o70abt37qmQEzDWlD5o3EJo2y60JnT3XMMuIhoCcaljdOs
sha512-364rFZxQkDKnO1Cb6xSOptllAQMAAFMlwDSLGl05ecerY7hqXV+z9jHFP3HoJrHwY8irfeuSJnj3PXgvCdQ/lw==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-tiktok-icons.4a9f9e31f5ffeff901e2.js" crossorigin="anonymous" integrity="sha256-twv1iJMuqrC5vf7SF10NDwu3EUAelwa6AXFSKodsiMs=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-web-privacy-sdk.ea9ef16eed4a55af4146.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 934/1708 Bytes






ETag: 90d2732c-5640-40ec-bdcf-2e6738687f62

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-+eaoL4LUlwLIW0SrvNaxNz4HEg4oMXQruQyGb5KF0Do=
sha384-5tYBc2MVvFWDraPU9LW6IUeBqZrQY6YHTBzljJnSTajzZn4sqcfIDmLeUZRg8KHU
sha512-cfUP2AVVJWVJSh9tZg3dx9k+ZHiwRdk2P34MKOdIj9wV/Sy70TQIKuJyR0aq7m9axi8uAL/32mdTmn8jxjYOTQ==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-byted-web-privacy-sdk.ea9ef16eed4a55af4146.js" crossorigin="anonymous" integrity="sha256-+eaoL4LUlwLIW0SrvNaxNz4HEg4oMXQruQyGb5KF0Do=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-d801507b.090ded7b527e77af6033.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 250834/971917 Bytes






ETag: 9396579a-ba31-4d9d-b554-eb3db23d9a7c

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-gD1eY6ND01FZZ4YCdSeKhNSZgGGsB8wpkgReH6aYA48=
sha384-WmrtuDLaA5kTqnYB7vCUsV0ND7oJK6NecUIXignIuWqltr96wzxmupgNLcoc+Gp/
sha512-luRr0utXQynxzdg02kJK7zIV2vrPzpRx2jX7UV1sfTf+rBDnC9+pF4lv2gBCU60Z0UnHpLZ8CESJzN5zO+eRVg==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-d801507b.090ded7b527e77af6033.js" crossorigin="anonymous" integrity="sha256-gD1eY6ND01FZZ4YCdSeKhNSZgGGsB8wpkgReH6aYA48=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-dp-byted-tea-sdk-oversea.9ab187d0e75cca16e8f5.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 28444/115991 Bytes






ETag: e78d806a-01e5-43a5-903f-774250df5228

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-X6Nax7nTVG5mjyR9XIx6AAi2JlAWmspXJm07aDJR8+g=
sha384-PsHYs9defnwo5kP6X8Krk2IpWkDGim0kH0OLxBOc29to+gQA4fLjoiQ/Lwx77GeU
sha512-wMo/fyOpOSm1bSUwG3c3nLCpR2H2+EVlEKxNUzKuJws4pkPhAgRmvoDHtrKK9LZYeA7sA46bIngHYjvKzrhkzw==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-dp-byted-tea-sdk-oversea.9ab187d0e75cca16e8f5.js" crossorigin="anonymous" integrity="sha256-X6Nax7nTVG5mjyR9XIx6AAi2JlAWmspXJm07aDJR8+g=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-react.5ac8ce03d19fdde08df6.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 55106/187544 Bytes






ETag: 00f6ac8f-d9bd-4538-bd55-afb31046a734

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-T+FG5CVV+/vuL2qrC/vUGaB3lW8NKJCpEaEuJ3XAQS4=
sha384-PLj6sELQyLaoNHxYcDKQWeU/PHffX/S4yf4SpBTTriqjRdTFhHucepCnLByqZwGA
sha512-8mVgiyQx3JrIUm/3jb9EqEK6jdc7Gutv0Oi9cd5MEIjk9cmvjOEa+mEn8QIq4DhCKy76M1ud12WKljcj55bscw==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-react.5ac8ce03d19fdde08df6.js" crossorigin="anonymous" integrity="sha256-T+FG5CVV+/vuL2qrC/vUGaB3lW8NKJCpEaEuJ3XAQS4=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-rxjs.f3c900b6de59b48132b7.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 11079/39857 Bytes






ETag: 8ca68350-ab25-4497-a9e5-6ebe88a7332a

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-0Di8MM9EocQImw1wcFEkfqGHgNyoCB4XvIMvyWdlR3Y=
sha384-iALYFEQdLXD1fBVVMoTw2oZQwNrZSLewGwXAAN7MbX/tAjsgGPzm7+YJAiz0jb8E
sha512-9TYStJ6j7kf7XFNl9Bf6dTHatZP4cz8/Ms7REcXeaKj8m9+sHqRlS3T7vpwl3q2AQLwZmSf1VO4FGTdTFOjT+g==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-rxjs.f3c900b6de59b48132b7.js" crossorigin="anonymous" integrity="sha256-0Di8MM9EocQImw1wcFEkfqGHgNyoCB4XvIMvyWdlR3Y=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-sigi.8aae39198a1dafd151d2.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 8315/32685 Bytes






ETag: 109304c7-d8bb-47ba-a04d-fa7a120aa0e9

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-2qI3P/bedYX9ysU2PN3b+/8HaQAGau20mh28C9obvnE=
sha384-EWAvH3Y/XkvGkcxOr4qbKuS/Q4rAzmu8GWuWimGJorUSaBqW5B+oC+HNQkS5NVHo
sha512-VHCFEeA+s/mDeVLoT7mng72mik8bV17cGN/2ftk6RO86KNuyASL+/ICxOCTlSNw8XfNDNiT+Le1LYrpEOWFX+A==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-sigi.8aae39198a1dafd151d2.js" crossorigin="anonymous" integrity="sha256-2qI3P/bedYX9ysU2PN3b+/8HaQAGau20mh28C9obvnE=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-xg-plugin.7738a1e651beff7bf829.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 165002/596838 Bytes






ETag: 970df00f-2890-4693-88d4-8f370b7a739f

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-tdI8tiW3zz53SFZf3BvKCf/0YG68PnFWUfmLhLgljuw=
sha384-hunU7cQSF1sF5jWMwaMziyDgSzb1+aVt1Xx9gYLHlytMAHsQncUdylG+g5Fz75Ld
sha512-o8F8ww0wSP/q1iE2n3diJku2Md/jYX7dP3O6h53n5qPFys2OJ8k3QoheOd3OWlkg4yrnE0srev7MvVCuAcZCEw==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/npm-xg-plugin.7738a1e651beff7bf829.js" crossorigin="anonymous" integrity="sha256-tdI8tiW3zz53SFZf3BvKCf/0YG68PnFWUfmLhLgljuw=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/runtime.c016bebb43189a021132.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 7662/16425 Bytes






ETag: 267ecd88-a554-4f97-88ee-6961afbb6915

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-beP9TP29tQ0OHtNP0Wqq07kXCQfFW8geypTSmGQt6+8=
sha384-0SJn8XdsXckA2SROfKUyWpSriWwBl1gwibxEvduf+EBm5koz3PCNE62IMQYXoP7U
sha512-WgTudCCfGCEEcwghUKD6Z7vbArcw2i0bmWTDTqNC7zQaq+B1Nt41aVmnbc2VCaN5slHlixShB0yyiTXDN0x/rg==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/runtime.c016bebb43189a021132.js" crossorigin="anonymous" integrity="sha256-beP9TP29tQ0OHtNP0Wqq07kXCQfFW8geypTSmGQt6+8=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/tux-h5-icons.e020fa01bd89e796267e.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 41940/179770 Bytes






ETag: cce480a0-6b37-408c-8631-248fae5d4651

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-JoklHExB+ynkBvvpLViQD0FL/3H5sbzU88esmNByK/Y=
sha384-TdevHpzW3/kWTDkkL8T/VPODHV5cUHEisn/9VloLt1q/IbltL2Hi4vdKLE5qJUBE
sha512-slcUILYV/xhVll9wkleTyvHd3ES6kHdlpz6WQj+eEFEZojUJdjhLe+X9oomFB8L+DGNSwlvhP3Fb3TUnqYeKdA==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/tux-h5-icons.e020fa01bd89e796267e.js" crossorigin="anonymous" integrity="sha256-JoklHExB+ynkBvvpLViQD0FL/3H5sbzU88esmNByK/Y=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/vendor.b00e5a47c57749a0391d.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 226456/722549 Bytes






ETag: e7ad06f2-4f52-4473-9608-47746ca6fec4

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-TbsrElPgK7lHbw5w6CSDY3ugIXrFUcPOkriG4xPhOVo=
sha384-nqeWhnO0LNf9SkGWz5OGV9GCiN4htiYNB9cfwvRXvzV+Vx+lEHMXjt6dDqR5x16B
sha512-KQoM1b2lsj2OKKhL8/aDsjmvf2S2vzED2z6mJJkNQZmqAVuEl+knvxYGKRbT/wFhRI0f1jXLFz9sRChvReskzg==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/vendor.b00e5a47c57749a0391d.js" crossorigin="anonymous" integrity="sha256-TbsrElPgK7lHbw5w6CSDY3ugIXrFUcPOkriG4xPhOVo=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/webapp-desktop-islands.94bef39bda2de1191a89.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 292725/1168567 Bytes






ETag: bc3ffdbf-ca74-4993-8207-45d94ee84e4b

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-QCxuEMRuP9js2au1SeJ/AwuKKGhiD93mYKX8RNU2mSc=
sha384-oQ7Y+toZlt8Q1Et0yaXHKwL8RIE3XiIP9HD+PVq8afkCu/kniaA6u1LFx+c1+9Gm
sha512-UbOExY0X05D1axR+plC0HksKOkp2G65tGMJZvR3tLtEUSQgplbFoNbmnLbCjIRJ4Y/C/j0PdvMyZwdJeOk9GZw==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok/webapp/main/webapp-desktop-islands/webapp-desktop-islands.94bef39bda2de1191a89.js" crossorigin="anonymous" integrity="sha256-QCxuEMRuP9js2au1SeJ/AwuKKGhiD93mYKX8RNU2mSc=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok_privacy_protection_framework/loader/1.0.0.818/index.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 20030/79560 Bytes






ETag: 010cc0ef-972c-430a-a1b9-14fa34b07ee9

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-p0rqu3BuVC2KftLI8R/pPHxk6LFCOveCuIqFAzJMCRg=
sha384-BEUYZqg9tWcPychfPZ/uDUoobhtfqpIu9t+1m+aixL2BADwjDeL29l9H0VESpANH
sha512-E0LkVwfURDX8NcazdLG63fmjt5Ycf6HhhKjhIX/5bcGVzUzrQ/uCAKeWqerNQeQEgXor0FjtulCCsefcCbaihg==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok_privacy_protection_framework/loader/1.0.0.818/index.js" crossorigin="anonymous" integrity="sha256-p0rqu3BuVC2KftLI8R/pPHxk6LFCOveCuIqFAzJMCRg=" />



script
src
https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok-infra/csp/sdk-pre/slardar.web.pre.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=2592000 - with long duration found.
Compression (br): 718/1378 Bytes






ETag: 408a9afc-eea2-4df0-ab53-9c7a82e51500

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-vRE78WyCSO1fNVNCN4V/h/Q6zcCZJX7Bp/JlbwUBG2M=
sha384-7ZhHhvs8V1hDj1LagaNoDdrKQatC30zIfIK4/07K7i2us5nxbJk03vVQq8QAJdd+
sha512-Y/zFOYwUcAPr+lX8Cz111qs9PPZSlj6gwA2cDYOZiEaOygF7qFBTZzzSt3wto11IJ5asieEsvpRv3hk0KIiToA==

 

<script src="https://sf16-website-login.neutral.ttwstatic.com/obj/tiktok_web_login_static/tiktok-infra/csp/sdk-pre/slardar.web.pre.js" crossorigin="anonymous" integrity="sha256-vRE78WyCSO1fNVNCN4V/h/Q6zcCZJX7Bp/JlbwUBG2M=" />


 

12. Html-Parsing via https://validator.nu/ / https://validator.w3.org/nu/ (started 2024-09-28, 09:00, alpha)

  Unfortunately, there are differences between the first used validator.nu and validator.w3.org/nu/ - switched to validator.w3.org/nu/. Looks like some error messages (link - fetchpriority attribute) of validator.nu are obsolete, not seen in the w3.org-version and not found in the current specification: link may have a fetchpriority attribute.

Url used (first standard-https-result with http status 200): https://www.tiktok.com/explore

Summary

Good: No non-document-errors
11 errors
0 warnings

TypeMessagenum found
1.errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)9
2.errorCSS: overflow-y: overlay is not a overflow-y value.1
3.errorAttribute to not allowed on element a at this point.1

Details


TypeMessage + Sample
1errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 9182 to line 1, column 9221

a-csr="1"><style data-emotion="css-global oqcfvi">*,*::b
2errorCSS: overflow-y: overlay is not a overflow-y value.

From line 1, column 11496 to line 1, column 11502

verflow-y:overlay;}html
3errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 11739 to line 1, column 11798

;}</style><style data-emotion="css bpo7be-DivSkeletonHeaderContainer">.css-b
4errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 12331 to line 1, column 12421

e4gdqxf0"><style data-emotion="css iu8yw8-DivSkeletonHeaderWrapper-StyledDivSkeletonHeaderWrapperV2">.css-i
5errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 13050 to line 1, column 13089

e4gdqxf2"><style data-emotion="css 16vbvt0-ALogo">.css-1
6errorAttribute to not allowed on element a at this point.

From line 1, column 13130 to line 1, column 13224

;}</style><a to="/" style="position:relative" data-e2e="tiktok-logo" class="css-16vbvt0-ALogo e1u8yrdb0"><svg x
7errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 13363 to line 1, column 13408

</svg></a><style data-emotion="css hgg3wj-DivContainer">.css-h
8errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 13849 to line 1, column 13902

1jlaln00"><style data-emotion="css 1t6cv2i-DivInputPlaceholder">.css-1
9errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 14030 to line 1, column 14074

01"></div><style data-emotion="css hck1rr-SpanSpliter">.css-h
10errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 14231 to line 1, column 14286

2"></span><style data-emotion="css 1nkv52y-StyledMagnifyingGlass">.css-1
11errorElement style not allowed as child of element div in this context. (Suppressing further errors from this subtree.)

From line 1, column 15078 to line 1, column 15158

svg></div><style data-emotion="css 1cfta9g-DivBaseComponent-StyledAvatar animation-91vjld">.css-1

 

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns-1475.awsdns-56.org, ns-1574.awsdns-04.co.uk, ns-440.awsdns-55.com, ns-722.awsdns-26.net

 

QNr.DomainTypeNS used
1
org
NS
c.root-servers.net (2001:500:2::c)

Answer: a0.org.afilias-nst.info, a2.org.afilias-nst.info, b0.org.afilias-nst.org, b2.org.afilias-nst.org, c0.org.afilias-nst.info, d0.org.afilias-nst.org
2
ns-1475.awsdns-56.org
NS
a0.org.afilias-nst.info (2001:500:e::1)

Answer: g-ns-1083.awsdns-56.org, g-ns-1656.awsdns-56.org, g-ns-184.awsdns-56.org, g-ns-762.awsdns-56.org

Answer: g-ns-1083.awsdns-56.org
205.251.196.59, 2600:9000:5304:3b00::1

Answer: g-ns-1656.awsdns-56.org
205.251.198.120, 2600:9000:5306:7800::1

Answer: g-ns-184.awsdns-56.org
205.251.192.184, 2600:9000:5300:b800::1

Answer: g-ns-762.awsdns-56.org
205.251.194.250, 2600:9000:5302:fa00::1
3
uk
NS
k.root-servers.net (2001:7fd::1)

Answer: dns1.nic.uk, dns2.nic.uk, dns3.nic.uk, dns4.nic.uk, nsa.nic.uk, nsb.nic.uk, nsc.nic.uk, nsd.nic.uk
4
ns-1574.awsdns-04.co.uk
NS
dns1.nic.uk (2a01:618:400::1)

Answer: g-ns-1479.awsdns-04.co.uk, g-ns-1800.awsdns-04.co.uk, g-ns-324.awsdns-04.co.uk, g-ns-900.awsdns-04.co.uk

Answer: g-ns-1479.awsdns-04.co.uk
205.251.197.199, 2600:9000:5305:c700::1

Answer: g-ns-1800.awsdns-04.co.uk
205.251.199.8, 2600:9000:5307:800::1

Answer: g-ns-324.awsdns-04.co.uk
205.251.193.68, 2600:9000:5301:4400::1

Answer: g-ns-900.awsdns-04.co.uk
205.251.195.132, 2600:9000:5303:8400::1
5
com
NS
c.root-servers.net (2001:500:2::c)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
6
ns-440.awsdns-55.com
NS
e.gtld-servers.net (2001:502:1ca1::30)

Answer: g-ns-1207.awsdns-55.com, g-ns-1783.awsdns-55.com, g-ns-56.awsdns-55.com, g-ns-631.awsdns-55.com

Answer: g-ns-1207.awsdns-55.com
205.251.196.183, 2600:9000:5304:b700::1

Answer: g-ns-1783.awsdns-55.com
205.251.198.247, 2600:9000:5306:f700::1

Answer: g-ns-56.awsdns-55.com
205.251.192.56, 2600:9000:5300:3800::1

Answer: g-ns-631.awsdns-55.com
205.251.194.119, 2600:9000:5302:7700::1
7
net
NS
a.root-servers.net (2001:503:ba3e::2:30)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
8
ns-722.awsdns-26.net
NS
a.gtld-servers.net (2001:503:a83e::2:30)

Answer: g-ns-1370.awsdns-26.net, g-ns-1946.awsdns-26.net, g-ns-475.awsdns-26.net, g-ns-796.awsdns-26.net

Answer: g-ns-1370.awsdns-26.net
205.251.197.90, 2600:9000:5305:5a00::1

Answer: g-ns-1946.awsdns-26.net
205.251.199.154, 2600:9000:5307:9a00::1

Answer: g-ns-475.awsdns-26.net
205.251.193.219, 2600:9000:5301:db00::1

Answer: g-ns-796.awsdns-26.net
205.251.195.28, 2600:9000:5303:1c00::1
9
ns-1475.awsdns-56.org: 205.251.197.195
A
g-ns-1083.awsdns-56.org (2600:9000:5304:3b00::1)
10
ns-1475.awsdns-56.org: 2600:9000:5305:c300::1
AAAA
g-ns-1083.awsdns-56.org (2600:9000:5304:3b00::1)
11
ns-1574.awsdns-04.co.uk: 205.251.198.38
A
g-ns-1479.awsdns-04.co.uk (2600:9000:5305:c700::1)
12
ns-1574.awsdns-04.co.uk: 2600:9000:5306:2600::1
AAAA
g-ns-1479.awsdns-04.co.uk (2600:9000:5305:c700::1)
13
ns-440.awsdns-55.com: 205.251.193.184
A
g-ns-1207.awsdns-55.com (2600:9000:5304:b700::1)
14
ns-440.awsdns-55.com: 2600:9000:5301:b800::1
AAAA
g-ns-1207.awsdns-55.com (2600:9000:5304:b700::1)
15
ns-722.awsdns-26.net: 205.251.194.210
A
g-ns-1370.awsdns-26.net (2600:9000:5305:5a00::1)
16
ns-722.awsdns-26.net: 2600:9000:5302:d200::1
AAAA
g-ns-1370.awsdns-26.net (2600:9000:5305:5a00::1)

 

14. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
m.tiktok.com.edgesuite.net



1
0
tiktok.com.edgesuite.net
0

no CAA entry found
1
0
com.edgesuite.net



1
0
edgesuite.net
0

no CAA entry found
1
0
m.tiktok.com



1
0
tiktok.com
0

no CAA entry found
1
0
com
0

no CAA entry found
1
0
net
0

no CAA entry found
1
0

 

15. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
tiktok.com
_globalsign-domain-verification=1Ni6hs1g4f-qH0qkRxQIQCeAaV4qeDxB75CccRlHS9
ok
1
0
tiktok.com
apple-domain-verification=hXgMRIDdysM4HJYw
ok
1
0
tiktok.com
facebook-domain-verification=iec6txjjw8r35xhq5swdem8tpa5mzw
ok
1
0
tiktok.com
facebook-domain-verification=wo9l655kzm8rfqm1st3qe7gqduoqav
ok
1
0
tiktok.com
google-site-verification=2ZTMDlDhN4fD3hIKVj_1LnDKhTvf4NVhT23o-edCEVw
ok
1
0
tiktok.com
google-site-verification=6qNNoqXIzco_ObM8QE5IZfz2kLnLQkG-llKLL_HudVI
ok
1
0
tiktok.com
google-site-verification=9aMOY6RF3QT8X2ACpo04BZ4CSdjPWxRJgncABZtHRYY
ok
1
0
tiktok.com
google-site-verification=heUwjUSZGdrUk6gp54Bxe8zNWMepAUdI3eECZ7zzNuQ
ok
1
0
tiktok.com
google-site-verification=-pibSb_VhK-cZP1CQSaH7s43WbBkpzjhUwAgyc3YDH4
ok
1
0
tiktok.com
google-site-verification=spKY3sgLfx2ShlMQbs-jaGpfyhukOMBQ9fV_cR8yKII
ok
1
0
tiktok.com
google-site-verification=StaGWBpu1eRwm0dUSA-24OmzeXAqkQitecePeqLQ0fc
ok
1
0
tiktok.com
google-site-verification=UlwaFhsh7mBJzb0eTyZBibPg6HQ6doHO8-_tkmjBo4E
ok
1
0
tiktok.com
hubspot-developer-verification=YzdjZDc2ZDEtMDRmNS00MWQyLWJlNzUtY2Q4YmQyN2E0NDFl
ok
1
0
tiktok.com
klaviyo-site-verification=STK9xy
ok
1
0
tiktok.com
mailru-verification: c0f4705a229bd0c6
ok
1
0
tiktok.com
MS=ms14857357
ok
1
0
tiktok.com
MS=ms80039204
ok
1
0
tiktok.com
v=spf1 include:_spf.google.com include:mail.zendesk.com include:spf.bytedance.com include:mail.stibee.com -all
ok
1
0
tiktok.com
verification-code-site-edm-va=GkLVdrouyEyNQGsN0X0W
ok
1
0
m.tiktok.com


1
0
_acme-challenge.m.tiktok.com

Name Error - The domain name does not exist
1
0
_acme-challenge.m.tiktok.com.tiktok.com

Name Error - The domain name does not exist
1
0
_acme-challenge.m.tiktok.com.m.tiktok.com

Name Error - The domain name does not exist
1
0
_acme-challenge.m.tiktok.com.edgesuite.net

Name Error - The domain name does not exist
1
0
_acme-challenge.m.tiktok.com.edgesuite.net.m.tiktok.com.edgesuite.net

Name Error - The domain name does not exist
1
0

 

16. DomainService - Entries

TypeDomainPrefValueDNS-errornum AnswersStatusDescription
SPF
TXT
m.tiktok.com

32768TXT expected, but CNAME found. CNAME not allowed, only TXT queries are allowed. See RFC 7208, 4.4.

 

 

17. Cipher Suites

No results

 

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

 

 

Permalink: https://check-your-website.server-daten.de/?i=262cec56-7e76-4bf4-9968-cdf5c63682b8

 

Last Result: https://check-your-website.server-daten.de/?q=m.tiktok.com - 2024-10-03 02:18:31

 

Do you like this page? Support this tool, add a link on your page:

 

<a href="https://check-your-website.server-daten.de/?q=m.tiktok.com" target="_blank">Check this Site: m.tiktok.com</a>

 

 

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

 

QR-Code of this page - https://check-your-website.server-daten.de/?d=m.tiktok.com