Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.DRedirect ChainAction2 redirect(s), 1930 ms totalFIX
https://ubisoft.com
590 ms · HTTP/1.1
https://www.ubisoft.com:443/
481 ms · HTTP/1.1
https://redirection.ubisoft.com/site/ent...
859 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://ubisoft.com | 301 | 590 ms | HTTP/1.1 | awselb/2.0 |
| 2 | https://www.ubisoft.com:443/ | 302 | 481 ms | HTTP/1.1 | nginx |
| 3 | https://redirection.ubisoft.com/site/ent... | 301 | 859 ms | HTTP/1.1 | nginx |
See the visual redirect chain in the HTTP Probe tab →
Each redirect adds latency. Try to minimize the chain to 1 hop.
Redirect chain — each hop adds latency; combine into one redirect where possible.
Source: Google Search Central / web.dev
If permanent, use 301 instead.
302 (Found) is for genuinely temporary redirects — if this redirect is permanent, switch to 301 to preserve SEO equity.
Learn more ▾ ▴
Search engines treat 302 as temporary, keeping the original URL indexed and not transferring full link equity to the destination. Use 301 (Moved Permanently) for permanent redirects (HTTP→HTTPS, www-vs-non-www, URL restructures).
Source: Google Search Central
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BTLS Certificate Expiry & Recommendations161 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records4 A records, 8 ms lookupPASS
| A | 13.226.2.70, 13.226.2.39, 13.226.2.114, 13.226.2.32 |
| AAAA | — |
| CNAME | — |
| NS | nic10.ubisoft.com, nic11.ubisoft.com, nic9.ubisoft.com, nic8.ubisoft.com, nic12.ubisoft.com, nic7.ubisoft.com |
| MX | 10 ubisoftaad.mail.protection.outlook.com |
| TXT | 6395952tgrx0nq2shsm4bj0mp04bv0lf bugcrowd-verification=781ae9b48804f8add3c1bcee8735405a yahoo-verification-key=2v3/RvKZtsL16/Erc43o02GG/9Z5cR0K+rWCtpOLFnQ= massive.se traction-guest=3b2176a4-98dc-4e02-b84f-31095f6540ca google-site-verification=PMm6IQjcQ_wHJsV_pffZbavEkfirwgSMmOaQj_AMfTg _xbjam1j19v2w8gg4cwdsmg6jkikkela _4gbjln1b1zsqrx07r9dwxkpkgc6u7nm mindmanager-verification=ba978b751c4264e7e073c779292ef42f1fc857684409779458aa8d2... 0tMyxslsphMCIIzNeDgID4/GjnWpc2dW1BNHaEKRL4IpkYF61cSGmGu+u6NoYchgzfTC1mPvPvQLTyew... facebook-domain-verification=xjqtprysbhed5aucmwwz24sux7txai google-site-verification=phzBddwo3tMA_pQe8ng6r8OMC3QuJXmo1wSmUDQ7X_k _of3992q20rio95w2qj9uaqv320rwf67 docusign=aa6c99a3-9d90-44ea-95ac-a85647ac310f google-site-verification=t4w4Y7Sv5wTee7kTIzCT6aFZ9815zfpxkhOpBm0aW9Y google-site-verification=rLYBNuuu6bq8ywQpfc210aGmwxFl6qiYFF0G9QVOjwo meltwater_sso_20240919_TRITON-23088 SPF v=spf1 redirect=_spf.ubisoft.com _validation-contactemail = OnlineServicesAccountEmail@ubisoft.com f504af08d6534b5c972ca634614aca25 onetrust-domain-verification=a13441f5962b4ae3a2008d371a9a59b1 workplace-domain-verification=DKGVK1n6nWMtMkaTqqmmEyBbaCeQpD q3701l6hl2tssy5vpztzxcj6p3jhkr95 yahoo-verification-key=WfkMvrR+lP6JaoD3+/3MphX2kBWm93qdZuQMSxizo4I= google-site-verification=ojCEaNjgk9J2AEW9QirlxCNPyKzPPuxUwMEnZsxDoR4 docker-verification=abe8ca4b-1d60-4a59-9249-2767ff730eb5 1nxrz74fqkf3ll8hq3tr40m1v9kptntz _wfedhvfe4x0gra8qzbxaagnoifm5xgf mandrill_verify.qqQHraAi1HP7f-TS_sZz8w miro-verification=8e8290f226b51d979319567f4013b3e7c3e6e876 google-site-verification=j1EXgGbu2oCklLAQ-k74wDhEkafdNMECeCkXSi5Qh-I mongodb-site-verification=q06HmWi8NiCGdWeyV9AtiRNuxUwCzGlR b9cb8c4617ad4e66bf33e9d27dcfdcea sfcc_verification_abbs=11b4dfd3723bebd6937acb542aed89ffcc414dabda5afd97a9a099d02... MS=ms83230767 google-site-verification=LhzYxjRXT7PoaNZKc5S8uJx4052WskPbml543VtBln0 google-site-verification=dihkF4af9SAHdmz_8q8hvYTaSGqioW53IR1rUVws6yQ yahoo-verification-key=bD5o6TM9FvqC47Uen3q9xSqw/8sg3Qfib8tabYeT660= apple-domain-verification=uaWcIrhCWaZeGgDy yahoo-verification-key=tA+kWaUNp/8W6fnykZMIuQRiYsdoyNLVS38JtEjmHks= atlassian-domain-verification=ICpQzwoB3aLQsc44H3q5QgpOhtlMYwovcpeiuJxjz048v1YSP3... apple-domain-verification=QEpHQ4CmgJqLfbjq o+3IYUaTIZPcD4on26EcJje5AyBvGeWMkCx9ib5cU2AYpua+H3lDl8rqud1iKARQXOsXjzMSjtghlzW6... yahoo-verification-key=Ppk87xYfSKLRECmwTKb4Nu5GObNPPbrvWytypx70/+Y= yahoo-verification-key=z71HS6OMwzAtRYSqIdRdqpT5EeqUSC7A4EyEklM0jgI= atlassian-domain-verification=AHpXTvqkKG/wQxzoa2wOyio1PBDKlE1YqVaXfizwofEleBbdlJ... yahoo-verification-key=rapoNB7BYr8sTLeb4JzYrlvz1JSLZq4cn76n7Kb0Jn4= _fbh3wr4ampzb7kxks2t9d7e2de5kobb google-site-verification=_v30AFjPaQrh1kmB4FZalRQ7TzPkiiUp_RswRW-CUE0 google-site-verification=ZUEImckRKJAdw504icZKK3ECefp4dm8L5xeKi_Xu30g yandex-verification: d6d613177cbf45fc google-site-verification=xANnMnVuUZt0L1RmSxSgKHgV2ryn1gauOYdhtKvXT2c yahoo-verification-key=bf9vnFlin3EIemCiThteL3U9ZT+CJ5gCRYF6Ul2Grek= |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Crawlabilityrobots.txt present, sitemap with 22 URLsPASS
User-Agent: *
Disallow: /entertainment/parks-experiences/escape-games/downloads
Disallow: /search?gss-q=*
Disallow: /legal/documents/PrivacyNoticeSmartrecruiters/
Disallow: /legal/documents/PrivacyNoticeMicrosoftTeams/
Disallow: /legal/documents/PrivacyNoticeRecruitment/
Sitemap: https://www.ubisoft.com/sitemap.xml
- https://www.ubisoft.com/sitemap/assassin...
- https://www.ubisoft.com/sitemap/assassin...
- https://www.ubisoft.com/sitemap/beyond-g...
- https://www.ubisoft.com/sitemap/far-cry/...
- https://www.ubisoft.com/sitemap/for-hono...
- https://www.ubisoft.com/sitemap/mario-ra...
- https://www.ubisoft.com/sitemap/rainbow-...
- https://www.ubisoft.com/sitemap/rainbow-...
- https://www.ubisoft.com/sitemap/rainbow-...
- https://www.ubisoft.com/sitemap/rainbow-...
- https://www.ubisoft.com/sitemap/riders-r...
- https://www.ubisoft.com/sitemap/rocksmit...
- https://www.ubisoft.com/sitemap/rocksmit...
- https://www.ubisoft.com/sitemap/roller-c...
- https://www.ubisoft.com/sitemap/skull-an...
- https://www.ubisoft.com/sitemap/star-war...
- https://www.ubisoft.com/sitemap/the-divi...
- https://www.ubisoft.com/sitemap/xdefiant...
- https://www.ubisoft.com/sitemap/the-crew...
- https://www.ubisoft.com/sitemap/avatar/f...
- https://www.ubisoft.com/sitemap/sitemap....
- https://www.ubisoft.com/sitemap/sitemap2...
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
Preferred variant: non-www
HTTP → HTTPS
Consistent
A+Domain Intelligenceubisoft.com — via Gandi SAS, 31 years, 5 months old, hosted on AWSPASS
2477 days
April 28, 2033
161 days
Issued by Amazon
31 years, 5 months
Registered April 27, 1995
Not enabled
Protects against DNS spoofing
AWS
ASN AS16509
13.226.2.70
Gandi SAS
Expiry timeline
Recommended actions
- Enable DNSSEC to protect visitors from DNS spoofing
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
DNSSEC protects against DNS spoofing attacks. While not required, enabling DNSSEC adds an additional layer of security. Contact your DNS provider to enable it.
Without DNSSEC, an attacker who can poison your DNS can hijack your domain — and SSL certs alone don't stop them.
Learn more ▾ ▴
DNSSEC adds cryptographic signatures to DNS records, preventing forged responses from poisoning resolver caches. Without it, an attacker who controls the network path can redirect your domain to a malicious server before any HTTPS handshake happens. Most modern registrars (Cloudflare, Google Domains, Route 53) enable it with one toggle.
Source: ICANN / RFC 4033
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice