amazon.com
79/100 — likely safe. Most trust signals check out. Verify unfamiliar businesses before big purchases.
Verdict driven by: no privacy policy found; no terms of service found; no contact page found — worth extra caution before trusting.
- No privacy policy foundLegally required in most jurisdictions. Its absence is a real red flag.
- No terms of service foundReputable sites usually publish a terms of service.
- No contact page foundReputable sites usually publish a contact page.
- Site responded with 202
- HTTPS is enforced
- Fast response (183ms)
- Served through Cloudflare
- 3 address record(s) resolved
- 4 authoritative nameservers
- Missing HSTS
- Missing Content Security Policy
- Page has no <title>
- No privacy policy found
- No terms of service found
- No contact page found
Top 6 things to fix
- high · securityAdd an HSTS header
Send Strict-Transport-Security: max-age=31536000; includeSubDomains on every response to force browsers onto HTTPS.
- high · transparencyPublish a Privacy Policy
A linked privacy policy is legally required in most jurisdictions and is one of the strongest transparency signals.
- medium · securityPublish a Content Security Policy
A minimal CSP dramatically reduces the impact of XSS. Start with default-src 'self' and iterate.
- medium · transparencyPublish Terms of Service
Reputable commercial sites publish clear terms so users know their rights.
- medium · transparencyAdd a contact page
List an email, form, or physical address. Sites without contact info are trusted less by users and search engines.
- low · contentSet a page title
Every page should have a descriptive <title> for browsers and search engines.
- Root label
- amazon
- TLD
- .com
- Uses punycode (xn--)
- no
- Mixed-script (homoglyph)
- no
- Brand match
- amazon (this IS the real brand's domain)
- Typosquat check
- no typosquat pattern
- Phishing suffix tokens
- none
- Payment red flags
- none detected
- Urgency / pressure language
- none detected
- Disposable-domain combo
- no
- Page text length scanned
- 159 chars
- Final URL
- https://www.amazon.com/
- Status
- 202
- Response time
- 183ms
- Server
- cloudflare
- CDN
- Cloudflare
- Content-Type
- text/html; charset=UTF-8
- Body size
- 2 KB
- Redirects
- 1
- 301 → https://www.amazon.com/
- A
- 98.82.161.185, 98.87.170.74, 98.87.170.71
- AAAA
- —
- MX
- 5 amazon-smtp.amazon.com
- NS
- ns-1447.awsdns-52.org, ns-1707.awsdns-21.co.uk, ns-264.awsdns-33.com, ns-521.awsdns-01.net
- TXT count
- 61
- SPF
- v=spf1 include:spf1.amazon.com include:spf2.amazon.com include:amazonses.com -all
- DMARC
- v=DMARC1;" "p=quarantine;" "pct=100;" "rua=mailto:report@dmarc.amazon.com;" "ruf=mailto:report@dmarc.amazon.com
- DMARC policy
- quarantine
- DKIM selectors found
- —
- Title
- Description
- —
- Language
- en
- Charset
- utf-8