Dr . Who Dr.Who lives at drwho.me — audit-grade domain evidence.
additional context — IP + user-agent lookups lookups that complement a dossier — useful when investigating a finding, but not part of the dossier engine itself.
-all hardfail — strict policy
Why it matters: SPF tells receiving servers which hosts may send mail for the domain. Without it, any sender can forge the envelope-from — the primary mechanism behind business-email-compromise (SOC 2 CC6.7).
v=spf1 include:spf1.alibaba.mail.aliyun.com -all
v=spf1 include:spf1.alibaba.mail.aliyun.com -all fetched 2026-05-23T09:26:40.002Z
p=reject — strict policy
Why it matters: DMARC binds SPF and DKIM into an enforceable policy (quarantine or reject) and surfaces spoofing attempts via aggregate reports. `p=none` or absent means spoofing succeeds silently (SOC 2 CC6.7).
v=DMARC1; p=reject; rua=mailto:dmarc-ap@service.alibaba.com; ruf=mailto:dmarc-ap@service.alibaba.com
v= DMARC1
p= reject
rua= mailto:dmarc-ap@service.alibaba.com
ruf= mailto:dmarc-ap@service.alibaba.com fetched 2026-05-23T09:26:40.006Z
A/AAAA records present
Why it matters: Without authoritative A or AAAA records on the apex, the domain is unreachable. Missing baseline DNS shows up in vendor reviews as evidence of unmanaged infrastructure (SOC 2 CC6.6).
A ttl=40 47.246.137.105ttl=40 47.246.136.52ttl=40 47.246.136.156ttl=40 47.246.131.198
AAAA — NS ttl=3600 ns2.alibabadns.com.ttl=3600 ns1.alibabadns.com.SOA ttl=600 ns1.alibabadns.com. hostmaster.alibabadns.com. 2018051019 3600 1200 86400 360
CAA — TXT ttl=600 "_5jdb2j5kq8y3825udjgp3f1uzk8hrqo"ttl=600 "v=spf1 include:spf1.alibaba.mail.aliyun.com -all"ttl=600 "b6fg4708z2kz3t8pp41wmftlf4vvh84p"ttl=600 "yandex-verification: 25a76ba8e4443bb3"ttl=600 "google-site-verification=_3PunMeGHgyqSjuZyyBHl5AlmIBpz7bWqtyhQ2iAexw"ttl=600 "515fw5jqjc7dcdpnkwvd96k0rg9vt605"ttl=600 "ZOOM_verify_nroBN4oZjyaVOxAXxm4ETC"ttl=600 "DNS TXT Entry TXT entry on either alibaba.com or _dnsauth.alibaba.com Random Value qxnv219nx770qvjxc9sx8rsltflgkb5r"ttl=600 "_globalsign-domain-verification=QvPiGgp7JtNFrKM-SHlBgC0VyNsx8UbwuZRVLUv9fr"ttl=600 "google-site-verification=zM241DesPos00zDW19NyGCSt2wfn1EsIhCoEgBmDMIk"ttl=600 "pinterest-site-verification=061dafc1e5f70bd298e76bed9e718dfe"fetched 2026-05-23T09:26:40.010Z
2 MX record(s) present
Why it matters: MX records direct inbound mail. Misconfiguration silently breaks email delivery and lets attackers stand up parallel MX hosts for spoofing campaigns (ISO 27001 A.8.21).
pri=10 mx01.mail.alibaba.com.pri=20 mx02.mail.alibaba.com.fetched 2026-05-23T09:26:40.012Z
no DKIM selectors found — likely not configured
Why it matters: DKIM signs outbound mail so receivers can detect tampering. Missing selectors or rotated-away keys break DMARC alignment and let receivers downgrade trust (ISO 27001 A.8.24).
Recommendations
Enable DKIM signing in your mail provider and publish the provided TXT record Common selectors: google._domainkey, selector1._domainkey (Microsoft), mail._domainkey no DKIM record on probed selectors (default, google, k1, selector1, selector2, mxvault)
DNSSEC not configured — no DS or DNSKEY records found
Why it matters: DNSSEC cryptographically signs DNS responses, blocking cache-poisoning attacks. US federal civilian agencies are required to enable it under OMB M-22-09 (NIST SC-20).
Recommendations
Enable DNSSEC in your DNS provider's control panel and add the resulting DS record at your registrar
enabled no
DS records —
DNSKEY records — fetched 2026-05-23T09:26:40.025Z
not applicable: no _mta-sts TXT record
Why it matters: MTA-STS forces inbound SMTP to use TLS and refuse downgraded connections. Without it, an in-path attacker can strip TLS and read mail in plaintext (SOC 2 CC6.7).
cert valid for 131 days
Why it matters: A valid current TLS certificate is the baseline for data in transit. Expiry, weak chain, or hostname mismatch break HTTPS and fail PCI 4.2.1 / SOC 2 CC6.1.
subject cn: *.alibaba.com
issuer: GlobalSign GCC R3 OV TLS CA 2024 / GlobalSign nv-sa
valid: Mar 16 11:57:07 2026 GMT → Oct 1 11:51:17 2026 GMT
authorized: yes
sha256: BA:72:8E:94:3B:1D:D2:C7:48:C1:1C:C3:5F:F6:B0:DE:3D:E6:50:B9:FC:A9:B0:56:29:6C:BC:2F:F0:F1:28:9D sans *.alibaba.com gw.api.alibaba.com m.dutch.alibaba.com m.indonesian.alibaba.com service.blue.alibaba.com *.10e.alibaba-inc.com *.4.alibaba-inc.com *.aas-ehp-data-service.amap.com *.ad.alibaba-inc.com *.ade.taobao.org *.admin.alibaba.com *.admin.shejijia.com *.ae.alibaba-inc.com *.agtech-develop.cn *.ai.alibaba.com *.aicloud.alibaba.com *.aid.alibaba.com *.ailabs.alibaba.com
*.algo-serverless.cainiao-inc.com
*.ali-health.com
*.alicom-mcm.alibaba-inc.com
*.aliexpress.alibaba.com
*.alihealth.alibaba-inc.com
*.alijk.com
*.alimebot.alibaba.com
*.alinode-pre.alibaba-inc.com
*.alinode.alibaba-inc.com
*.alipay.keruyun.com
*.alipsports.alibaba-inc.com
*.alisports.alibaba.com
*.alitalk.alibaba.com
*.alivecdn.com
*.aliwx.alibaba.com
*.aliyundrive.com
*.alsc.alibaba.com
*.alsc.ele.me
*.alta.elenet.me
*.alwx.alibaba.com
*.amap.alibaba-inc.com
*.ams.taobao.org
*.analysis.alibaba.com
*.apollo.alibaba.com
*.apsaraun.com
*.arabic.alibaba.com
*.arrival.sm.cn
*.art.alibaba.com
*.ascp.alibaba.com
*.ascp.hemaos.com
*.asi.yushanfang.com
*.atom-polymer.alibaba-inc.com
*.auto-rtti.amap.com
*.b.keruyun.com
*.baidu.keruyun.com
*.bcp.alibaba-inc.com
*.bid.cainiao.com
*.bifrost.alibaba-inc.com
*.bops.alibaba.com
*.botframework.alibaba.com
*.bpaas.alibaba-inc.com
*.brain.alibaba-inc.com
*.budao.alibaba-inc.com
*.buyermaket.alibaba.com
*.c2m.alibaba-inc.com
*.cacheadmin.taobao.org
*.cangjie-test.alibaba-inc.com
*.car.amap.com
*.cashier.keruyun.com
*.cc-schedule.alibaba-inc.com
*.cdnfc.alibaba-inc.com
*.cdnsreportal.alibaba-inc.com
*.center.opens.alios.cn
*.cf.alibaba-inc.com
*.cgame.alibaba.com
*.chaoniu.alibaba-inc.com
*.chaos.alibaba-inc.com
*.china.alibaba.com
*.chinasuppliers.alibaba.com
*.chinese.alibaba.com
*.client.alibaba.com
*.cloud-ide.alibaba-inc.com
*.cloud.alibaba.com
*.cloudavn.zebred.com
*.cloudgame.alibaba-inc.com
*.cloudsinger.alibaba-inc.com
*.cmc.cainiao.com
*.cmns.yunos-inc.com
*.cmt.sm.cn
*.cntec.cainiao.com
*.como.alibaba-inc.com
*.company.alibaba.com
*.cone.alibaba-inc.com
*.content.alibaba-inc.com
*.corona-web.alibaba-inc.com
*.corp.alibaba-inc.com
*.corp.taobao.org
*.coverage.alibaba-inc.com
*.creation.alibaba.com
*.crm.alibaba.com
*.crm.koubei.com
*.crmweb.alibaba.com
*.cro.alibaba-inc.com
*.cs.shejijia.com
*.cse.alibaba-inc.com
*.cus.dingtalk.com
*.customize.alibaba.com
*.cw-inbound.cainiao.com
*.d.alibaba.com
*.daisy.alibaba.com
*.damo.alibaba.com
*.data.taobao.org
*.datav-app.alibaba-inc.com
*.datax.alibaba-inc.com
*.dayu.alibaba.com
*.dazlogistics-mm.com
*.dazlogistics-np.com
*.dazlogistics.com.bd
*.dazlogistics.lk
*.dazlogistics.pk
*.de.alibaba-inc.com
*.delivery.quality.alibaba-inc.com
*.delivery.report.alibaba-inc.com
*.developers.alios.cn
*.dg-work.cn
*.diamond.alibaba-inc.com
*.dianwoda.cn
*.dianwoda.com
*.dingding.xin
*.directory.alibaba.com
*.dlportal-mm.com
*.dlportal-np.com
*.dlportal.com.bd
*.dlportal.lk
*.dlportal.pk
*.dm.alibaba-inc.com
*.dm.taobao.org
*.do.elenet.me
*.dolphin.alimama.com
*.download.alibaba.com
*.drds-histore-manager.alibaba.com
*.dryrun.alibaba-inc.com
*.drzpcb.alibaba.com
*.dwms.cainiao.com
*.e2d.alibaba.com
*.edi.alibaba.com
*.edi.hemaos.com
*.ei.alibaba.com
*.eiworkspace.com
*.ele-finnet.alibaba.com
*.ele.alibaba.com
*.en.alibaba.com
*.enasa.alibaba-inc.com
*.engine.alibaba-inc.com
*.erp.keruyun.com
*.f2e.alibaba-inc.com
*.faas.elenet.me
*.fbi.alibaba.com
*.fe.uczzd.cn
*.finance.alibaba.com
*.find.alibaba-inc.com
*.finnet.alibaba.com
*.fita.alibaba.com
*.fm.alibaba.com
*.french.alibaba.com
*.friday123.alibaba-inc.com
*.fs-proxy.alibaba-inc.com
*.fx.alibaba.com
*.gateway.koubei.com
*.gdb.amap.com
*.gds.alibaba-inc.com
*.gds.alibaba.com
*.gds.amap.com
*.german.alibaba.com
*.ggp.alibaba-inc.com
*.global.alibaba-inc.com
*.goc-ding-isv.alibaba-inc.com
*.goc.alibaba-inc.com
*.goofish.com
*.gov-deliver.alibaba-inc.com
*.gov-devops.alibaba.com
*.gray.amap.com
*.green.alibaba-inc.com
*.gts-x.alibaba.com
*.gts.work
*.guobei.alibaba.com
*.h.alibaba.com
*.halo.alibaba-inc.com
*.hangzhou.myalicdn.com
*.hanoi.alibaba-inc.com
*.hbase.alibaba-inc.com
*.hdfs.amap.com
*.heartbeat.alibaba.com
*.hebrew.alibaba.com
*.hindi.alibaba.com
*.holoweb.alibaba-inc.com
*.homelab.alibaba-inc.com
*.hospital.ali-health.com
*.hr.cainiao.com
*.huichuan.sm.cn
*.huikuanbao.alibaba.com
*.hz-productposting.alibaba.com
*.icbu-uic-ops.alibaba-inc.com
*.icbu.alibaba.com
*.idcenvinspect.alibaba-inc.com
*.idst-open.alibaba.com
*.iflow.sm.cn
*.importer.alibaba.com
*.impp.alibaba-inc.com
*.inc.alibaba.com
*.india.alibaba.com
*.inner.alicdn.com
*.insights.alibaba.com
*.inspection.alibaba.com
*.instar.elenet.me
*.invoice.alibaba.com
*.invoice.kaola.com
*.iot.aligenie.com
*.iot.cainiao.com
*.irs.alibaba-inc.com
*.italian.alibaba.com
*.japanese.alibaba.com
*.keruyun.com
*.koala-id.alibaba-inc.com
*.koala-sg.alibaba-inc.com
*.korean.alibaba.com
*.kun-sit.ejoy.com
*.kun.ejoy.com
*.labs.alibaba-inc.com
*.lakers.hupan.com
*.lazadapcb.alibaba.com
*.lena.alibaba-inc.com
*.loginx.alibaba.com
*.loginx.cainiao-inc.com
*.loginx.cainiao.com
*.lsy.alibaba.com
*.m.alibaba.com
*.m.en.alibaba.com
*.m.fm.alibaba.com
*.m.kaola.com
*.m.trustpass.alibaba.com
*.manager.amap.com
*.masp.alibaba-inc.com
*.master.alibaba-inc.com
*.mcu.alibaba.com
*.mds.alibaba.com
*.mechanism.alibaba-inc.com
*.media.alimama.com
*.message.amap.com
*.metric-gateway.alibaba.com
*.mid.ejoy.com
*.mini.alibaba.com
*.miniapp.alibaba-inc.com
*.model-construction2.alibaba-inc.com
*.monitor.dingtalk.com
*.mos.alibaba.com
*.mw.alibaba-inc.com
*.my.alibaba.com
*.myalicdn.com
*.nb.cainiao-inc.com
*.nls-domo.alibaba-inc.com
*.notebook.alibaba-inc.com
*.notebook1.alibaba-inc.com
*.o2o.ele.me
*.o2oclick.alibaba.com
*.offer.alibaba.com
*.ok.alibaba-inc.com
*.olympic.alimebot.com
*.omni.alibaba-inc.com
*.oms.hemaos.com
*.one-voice-platform.alibaba-inc.com
*.onebox.alibaba-inc.com
*.oneops.alibaba-inc.com
*.onepub.alibaba-inc.com
*.onesite.alibaba.com
*.online.alibaba.com
*.open.alimama.com
*.opens.alios.cn
*.opensearch-cn-shanghai-in.alibaba-inc.com
*.operation.alibaba-inc.com
*.orch.alibaba.com
*.orchestration.alibaba.com
*.orchestrator.alibaba.com
*.orion-api.sm.cn
*.oversea.amap.com
*.package.alibaba-inc.com
*.partner.keruyun.com
*.pay.keruyun.com
*.philstone.client.alibaba-inc.com
*.philstone.server.alibaba-inc.com
*.photostore-admin.yunos.com
*.piao.cn
*.piao.com.cn
*.pinpoint.alibaba-inc.com
*.platform.cainiao.com
*.porschemaster.alibaba-inc.com
*.portuguese.alibaba.com
*.ppc.alibaba.com
*.pre-chaos.alibaba-inc.com
*.pre-corona-web.alibaba-inc.com
*.pre-seller.fliggy.com
*.pre-test.alibaba-inc.com
*.pre.ele.me
*.prepub.alibaba.com
*.prepub.ele.me
*.preview.alibaba.com
*.product.alibaba-inc.com
*.productdict.alibaba.com
*.profile.alibaba.com
*.proxy.sm.cn
*.pts.alibaba.com
*.qatool.amap.com
*.qd.alibaba.com
*.qookkagames.com
*.quark.alibaba.com
*.quark.cn
*.rec.alibaba.com
*.recmd.alibaba.com
*.resources.alibaba.com
*.rest.alibaba.com
*.rfq.alibaba.com
*.riskflow.alibaba-inc.com
*.roadline.amap.com
*.rtp.alibaba.com
*.ru-inc.cainiao.com
*.ru.cainiao-inc.com
*.russian.alibaba.com
*.sa.alibaba.com
*.sec-ops.alibaba.com
*.security.alibaba.com
*.seenew.alibaba-inc.com
*.seller.fliggy.com
*.shadow-caijing.alibaba-inc.com
*.shield-alisports.alibaba-inc.com
*.shippingma.alibaba.com
*.shishike.com
*.shujupie.com
*.skywalker-manager.alibaba-inc.com
*.sm.alibaba.com
*.solar-id.alibaba-inc.com
*.solar-sg.alibaba-inc.com
*.solr.yunos-inc.com
*.solr.yunos.com
*.sourcing.alibaba.com
*.sp.sm.cn
*.sp.yisou.com
*.sp2.sm.cn
*.spanish.alibaba.com
*.sqlflow.alibaba-inc.com
*.staging-sg.alibaba-inc.com
*.static.keruyun.com
*.structure.alibaba-inc.com
*.studio.alibaba-inc.com
*.surge.alibaba.com
*.t.alibaba.com
*.tae.taobao.org
*.tag.xiami.com
*.taohuazg.com
*.tbpw.alibaba-inc.com
*.tdum.alibaba.com
*.teamix.alibaba-inc.com
*.telematics.alibaba.com
*.telematics.amap.com
*.test1.alibaba-inc.com
*.testaone.alibaba-inc.com
*.thai.alibaba.com
*.themis.alibaba-inc.com
*.thor.amap.com
*.tiddo.alibaba-inc.com
*.tinya1.cn
*.tiyan.plus
*.tools.elenet.me
*.touch.umeng.com
*.tpp.taobao.org
*.tq-meta.alibaba-inc.com
*.translate.alibaba-inc.com
*.trustpass.alibaba.com
*.tsp.alibaba-inc.com
*.tuipre.alibaba.com
*.turkish.alibaba.com
*.tvos.alibaba.com
*.uat-caijing.alibaba-inc.com
*.umstest.hemaos.com
*.unicorn.alibaba.com
*.union.alibaba.com
*.university.alibaba-inc.com
*.ups.alibaba-inc.com
*.upush.umeng.com
*.us.alibaba.com
*.vertical.freshhema.com
*.video.alibaba.com
*.vidmagic.alibaba-inc.com
*.vietnamese.alibaba.com
*.vip.alibaba.com
*.vipprod.alibaba.com
*.virtual.alibaba-inc.com
*.vmac.yunos.com
*.vs.cainiao-inc.com
*.vscode.alibaba-inc.com
*.w.alibaba-inc.com
*.waimai.alibaba-inc.com
*.wap.alibaba.com
*.wap2.alibaba.com
*.wapa.alibaba.com
*.wapseo.alibaba.com
*.web.taobao.org
*.weixin.keruyun.com
*.weixin.static.keruyun.com
*.wing.alibaba-inc.com
*.workbench.alibaba-inc.com
*.wscrosstool-bops.alibaba.com
*.x-medic.alibaba-inc.com
*.xnet2-model.alibaba-inc.com
*.xnet2-service.alibaba-inc.com
*.xunxi.alibaba.com
*.yamp.alibaba-inc.com
*.youku.alibaba.com
*.yp.alibaba.com
*.yuekeyun.cn
*.zaihuadong.alibaba.com
*.zebred.com
*.zeus.alibaba.com
*.zhanzhang.sm.cn
*.zzd.alibaba-inc.com
*.zzd.sm.cn
alibabadesign.com
alibabaued.com
alidns.com
dcdcrm.com
ewtp.com
goofish.com
keruyun.com
myquark.cn
quark.cn
shishike.com
sm.cn
tiyan.plus
uc-engine.cn
yisou.com
yunshangzhipian.com
alibaba.com fetched 2026-05-23T09:26:40.028Z
no CORS headers — cross-origin requests blocked by default
Why it matters: Overly permissive CORS (wildcard with credentials, or reflected origin) lets any origin read authenticated responses from this domain. OWASP A05 misconfiguration territory (NIST AC-4).
origin https://drwho.me method GET preflight status 301 access-control-* headers
access-control-allow-origin —
access-control-allow-methods —
access-control-allow-headers —
access-control-allow-credentials —
access-control-max-age —
access-control-expose-headers — no access-control-* headers returned — site does not advertise CORS to this origin
fetched 2026-05-23T09:26:40.039Z
check failed: crt.sh: Error: crt.sh http 429; certspotter: Error: certspotter http 429
Why it matters: Every certificate issued for this domain is published in Certificate Transparency logs — including subdomains you may have forgotten. Unknown subdomains in CT are pre-disclosed attack surface (ISO 27001 A.8.16).
crt.sh: Error: crt.sh http 429; certspotter: Error: certspotter http 429
not applicable: no TLSRPT record
Why it matters: TLS-RPT publishes a reporting address for SMTP-TLS failures. Without it, downgrade attacks on inbound mail go unnoticed (SOC 2 CC7.2).
HTTPS served correctly
Why it matters: Bare HTTP requests must redirect to HTTPS without dropping the user mid-chain. Plain-text fallback or open redirects fail PCI 4.2.1 and feed phishing chains (SOC 2 CC6.6).
final status: 200 · 2 hops
[301] https://alibaba.com/[200] https://www.alibaba.com/fetched 2026-05-23T09:26:40.381Z
HTTPS surface reachable (robots ✓, sitemap ✓, title ✓)
Why it matters: Public files — robots.txt, sitemap.xml, head meta — are what attackers see first during reconnaissance. Misadvertised paths, stale sitemaps, and verbose generators leak more than intended (ISO 27001 A.8.9).
robots.txt
present User-agent: *
Allow: /lp/*?
Allow: /*s=p
Allow: /*?_escaped_fragment_
Allow: /*src=sem_ggl
Allow: *?src=sem_ggl
Allow: /catalog/*?
Allow: /product-detail/
Allow: /showroom/
Allow: *?spm=
Allow: *?mark=google_shopping
Disallow: /bin/
Disallow: /apps/
Disallow: /buy/
Disallow: /memberhome/
Disallow: /minisite/
Disallow: /corporations/
Disallow: /buyers/
Disallow: /trade/
Disallow: /product/
Disallow: /product-insights/
Disallow: /supplier/guide/
Disallow: /catalogs/corporations/
Disallow: /rss/*/*.rss
Disallow: /activities/
Disallow: /productshowimg/
Disallow: /member/*/contactinfo.html
Disallow: /member/*/company_profile.html
Disallow: /member/*/productlist.html
Disallow: /searchweb/*.html
Disallow: /magellan/*.html
Disallow: /newsuppliers/
Disallow: /wholesalecheckout/
Disallow: /buyofferdetail/
Disallow: /industry-promotion/
Disallow: /city/
Disallow: /countrysearch/*/*-importer.html
Disallow: /countrysearch/*/*/importers/*.html
Disallow: /search/buyeroffers/*.html
Disallow: /search/buyeroffers/*/*.html
Disallow: /buyeroffers/*/*.html
Disallow: /buyeroffers/*/*/*.html
Disallow: /detail/ajax/
Disallow: /ajax/seoRequest/
Disallow: /event/
Disallow: /cache/
Disallow: /catalogs/products/
Disallow: /products/
Disallow: /https:/www.alibaba.com/
Disallow: /compass/
Disallow: /product-detail/m.alibaba.com/trade/
Disallow: /messages/
Disallow: /supplier-report/
Disallow: /amp/
Disallow: /showroom/https:/s.alicdn.com/
User-agent: bingbot
Allow: /*s=p
Allow: /*?_escaped_fragment_
Allow: *?src=sem_ggl
Allow: /catalog/*?
Allow: *?mark=google_shopping
Disallow: /catalogs/products/
Disallow: /products/
Disallow: /bin/
Disallow: /apps/
Disallow: /buy/
Disallow: /memberhome/
Disallow: /minisite/
Disallow: /corporations/
Disallow: /buyers/
Disallow: /trade/
Disallow: /product/
Disallow: /catalogs/corporations/
Disallow: /rss/*/*.rss
Disallow: /activities/
Disallow: /productshowimg/
Disallow: /member/*/contactinfo.html
Disallow: /member/*/company_profile.html
Disallow: /member/*/productlist.html
Disallow: /searchweb/*.html
Disallow: /magellan/*.html
Disallow: /newsuppliers/
Disallow: /wholesalecheckout/
Disallow: /buyofferdetail/
Disallow: /industry-promotion/
Disallow: /city/
Disallow: /countrysearch/*/*-importer.html
Disallow: /countrysearch/*/*/importers/*.html
Disallow: /search/buyeroffers/*.html
Disallow: /search/buyeroffers/*/*.html
Disallow: /buyeroffers/*/*.html
Disallow: /buyeroffers/*/*/*.html
Disallow: /detail/ajax/
Disallow: /ajax/seoRequest/
Disallow: /event/
Disallow: /cache/
Disallow: /catalogs/products/
Disallow: /products/
Disallow: /https:/www.alibaba.com/
Disallow:/compass/
Disallow: /product-detail/alisite-mobile.alibaba.com/
Disallow:/product-detail/m.alibaba.com/trade/
User-agent: Googlebot
Allow: /*s=p
Allow: /*?_escaped_fragment_
Allow: *?src=sem_ggl
Allow: /catalog/*?
Allow: /product-detail/
Allow: /showroom/
Allow: *?spm=
Allow: *?mark=google_shopping
Allow: /lp/*?
Disallow: /bin/
Disallow: /apps/
Disallow: /buy/
Disallow: /memberhome/
Disallow: /minisite/
Disallow: /corporations/
Disallow: /buyers/
Disallow: /trade/
Disallow: /product/
Disallow: /catalogs/corporations/
Disallow: /rss/*/*.rss
Disallow: /activities/
Disallow: /productshowimg/
Disallow: /member/*/contactinfo.html
Disallow: /member/*/company_profile.html
Disallow: /member/*/productlist.html
Disallow: /searchweb/*.html
Disallow: /magellan/*.html
Disallow: /newsuppliers/
Disallow: /wholesalecheckout/
Disallow: /buyofferdetail/
Disallow: /industry-promotion/
Disallow: /city/
Disallow: /countrysearch/*/*-importer.html
Disallow: /countrysearch/*/*/importers/*.html
Disallow: /search/buyeroffers/*.html
Disallow: /search/buyeroffers/*/*.html
Disallow: /buyeroffers/*/*.html
Disallow: /buyeroffers/*/*/*.html
Disallow: /detail/ajax/
Disallow: /ajax/seoRequest/
Disallow: /event/
Disallow: /cache/
Disallow: /catalogs/products/
Disallow: /products/
Disallow: /https:/www.alibaba.com/
Disallow:/compass/
Disallow: /product-detail/alisite-mobile.alibaba.com/
User-agent: Googlebot-image
Allow: /lp/*?
Allow: /*s=p
Allow: /*?_escaped_fragment_
Allow: /*src=sem_ sitemap.xml
present — 0 url(s)
head
title Alibaba.com: Manufacturers, Suppliers, Exporters & Importers from the world's largest online B2B marketplace description Find quality Manufacturers, Suppliers, Exporters, Importers, Buyers, Wholesalers, Products and Trade Leads from our award-winning International Trade Site. Import & Export on alibaba.com social
og:title Find quality Manufacturers, Suppliers, Exporters, Importers, Buyers, Wholesalers, Products and Trade Leads from our award-winning International Trade Site. Import & Export on alibaba.com
og:type site
og:url https://www.alibaba.com
og:site_name Alibaba fetched 2026-05-23T09:26:40.560Z
A-
Audit-ready · 3 minor advisories
Aggregate grade across 15 checks. Auditors typically flag any High-severity finding.
Pass 12
Warn 3
Fail 0 What an auditor would flag first low DKIM
no DKIM selectors found — likely not configured
SOC 2 CC6.7
low Security headers
3 security header(s) missing
SOC 2 CC6.6 ISO 27001 A.14.1.2
low DNSSEC
DNSSEC not configured — no DS or DNSKEY records found
SOC 2 CC6.6 ISO 27001 A.13.1.1
Need this as an artifact your auditor can verify?
Your alibaba.com scan flagged 3 low findings. A signed pack covers the apex plus up to 100 CT-discovered subdomains, Ed25519-signed and ISO-timestamped, delivered in 10–30 minutes.
15-check summary DNS records A/AAAA records present MX 2 MX record(s) present SPF -all hardfail — strict policy DMARC p=reject — strict policy DKIM no DKIM selectors found — likely not configured TLS certificate cert valid for 131 days Redirect chain HTTPS served correctly Security headers 3 security header(s) missing CORS no CORS headers — cross-origin requests blocked by default Web surface HTTPS surface reachable (robots ✓, sitemap ✓, title ✓) MTA-STS not applicable: no _mta-sts TXT record TLS-RPT not applicable: no TLSRPT record DNSSEC DNSSEC not configured — no DS or DNSKEY records found WHOIS domain registered until 2030-05-23 Certificate Transparency check failed: crt.sh: Error: crt.sh http 429; certspotter: Error: certspotter http 429 domain registered until 2030-05-23
Why it matters: Registrar and expiry tell auditors the domain is owned, current, and not about to lapse. An expired or about-to-expire domain fails business-continuity evidence (SOC 2 A1.2).
registrar Alibaba Cloud Computing (Beijing) Co., Ltd.
created 1999-04-15T04:00:00Z
expires 2030-05-23T19:54:58Z
statuses clientTransferProhibited https://icann.org/epp#clientTransferProhibited, serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited, serverTransferProhibited https://icann.org/epp#serverTransferProhibited, serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited fetched 2026-05-23T09:26:41.071Z