DNS Gurus

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Hostname Mismatch - certificate is issued for auctane.com, *.shipengine.com, auctane.dev, shipworks.com, *.auctane.com, shipengine.com, *.shipstation.com, shipstation.com, *.shipworks.com, not for ec2-52-0-87-7.compute-1.amazonaws.com

Open Cached · just now
16 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Basic
default-src; font-src; connect-src; +8 more
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Missing
Not configured
Recommendations
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked

Caching Headers

0 headers
No caching headers found

Content Headers

0 headers
No content headers found

Server Headers

0 headers
No server headers found

CORS Headers

2 headers
Access-Control-Allow-Credentials
Cors
true
Access-Control-Allow-Origin
Cors
https://dashboard.shipengine.com

Cookies Headers

1 headers
Set-Cookie
Cookies
auth_verification=%7B%22nonce%22%3A%22nJF3tVm0TgC8e5ZJdVQdXVBSPcbEcn4dCNixXBgi9JY%22%2C%22state%22%3A%22eyJyZXR1cm5UbyI6Imh0dHBzOi8vZGFzaGJvYXJkLnNoaXBlbmdpbmUuY29tLz9pc3M9aHR0cHMlM0ElMkYlMkZzaGlwc3RhdGlvbi5hdXRoMC5jb20lMkYifQ%22%2C%22code_verifier%22%3A%22c47jRPKJmKMNG6K24MN2j9_zLUYc8D3y8JDcRG-rSy0%22%7D.TPc07oVvh1zU638_MvVAB7xGoSr7jwHuQKhlcFpW4_w; Path=/; HttpOnly; Secure; SameSite=Lax

Other Headers

5 headers
Date
Other
Thu, 27 Nov 2025 21:11:05 GMT
Location
Other
https://shipstation.auth0.com/authorize?client_id=RKIoV89nI3vBa8IexRby8bkeRtMF6tpn&scope=openid%20profile%20email%20offline_access&response_type=code&redirect_uri=https%3A%2F%2Fdashboard.shipengine.com%2Fapi%2Fauth%2Fcallback&audience=ss%3Awebapi&white_label_logo_url=https%3A%2F%2Fdashboard.shipengine.com%2Fimg%2Flogos%2Fshipstation-api-logo.svg&white_label_page_background_color=rgb%28248%2C%20252%2C%20255%29&white_label_form_background_color=white&white_label_form_text_color=%2310894E&white_label_login_button_background_color=%2310894E&white_label_login_button_text_color=white&white_label_marketing_button_display_text=Sign%20up%20for%20ShipStation%20API&white_label_marketing_button_url=https%3A%2F%2Fwww.shipengine.com%2Fsignup%2F&white_label_marketing_button_background_color=white&white_label_marketing_button_border_color=%2310894E&white_label_marketing_button_text_color=%2310894E&white_label_forgot_password_link=https%3A%2F%2Fapp.shipengine.com%2F%23%2Fpublic%2Fforgot&auth0LoginConfigToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJkaXNhYmxlQ2FwdGNoYSI6ZmFsc2UsImlhdCI6MTc2NDI3Nzg2NSwiZXhwIjoxNzY0Mjc4NzY1fQ.7dt6MMGexoV8ci-9pG983tAeFH7bnGgd2tjZ-VgfBfQ&disableCaptcha=false&nonce=nJF3tVm0TgC8e5ZJdVQdXVBSPcbEcn4dCNixXBgi9JY&state=eyJyZXR1cm5UbyI6Imh0dHBzOi8vZGFzaGJvYXJkLnNoaXBlbmdpbmUuY29tLz9pc3M9aHR0cHMlM0ElMkYlMkZzaGlwc3RhdGlvbi5hdXRoMC5jb20lMkYifQ&code_challenge_method=S256&code_challenge=0mlb5M2uimjI1x7KXF3_XjiCRPcjqHJfo4Nnphe-HfE
X-Dns-Prefetch-Control
Other
on
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching

Analysis completed in 621ms