🌐

hepsipay.com

TR · Online since 11+ years
✓ HTTPS ✓ HTTP/1.1 ✓ Gzip 60.0% ⚡ 21198ms
hepsipay.com Overview

Get a snapshot of hepsipay.com's online performance, security posture, and technology profile.

hepsipay.com Website Overview & Technology Report

75
Trust Score
Likely Safe
35
Security
Headers: 2/6
21198ms
Response
Slow
3
Technologies
Detected
🤖 AI Analysis

We performed a comprehensive analysis of hepsipay.com on 2026-07-01. The website returned an HTTP 200 status code with a server response time of 21198ms. The page is served over HTTP/1.1 protocol with Gzip compression enabled, achieving approximately 60.0% size reduction. The total page weight is 239 KB. The website uses a secure HTTPS connection with a valid SSL certificate issued by Sectigo Limited (OV type). The connection is encrypted using TLS 1.3 with the TLS_AES_256_GCM_SHA384 cipher suite and sha256WithRSAEncryption signature algorithm. The certificate covers 2 domain(s) (Subject Alternative Names) and expires on 2026-11-26, which is 148 days from now. The security headers analysis reveals a score of 35/100 (below average). The following security headers are properly configured: Strict-Transport-Security (HSTS) and X-Content-Type-Options. However, the site is missing Content-Security-Policy, X-Frame-Options, Referrer-Policy, and Permissions-Policy, which could expose the site and its users to cross-site scripting (XSS), clickjacking, and other web-based attacks. Our technology detection scan identified 3 technologies across 3 categories powering hepsipay.com. The detected stack includes Next.js css, Webpack, and Google Tag Manager. The site uses Next.js as its primary framework (version css). Based on our comprehensive analysis of domain age, SSL configuration, email authentication, security headers, and blacklist status, hepsipay.com receives an overall trust score of 75/100, classified as "Likely Safe".

Status Code200 OK
HTTP VersionHTTP/1.1
Server
Page Size239 KB
Total Requests156
3rd Party Domains10
SSL CertificateSectigo Limited (OV) · 148 days left
TLS VersionTLS 1.3
IP Address213.74.203.13
hepsipay.com Trust & Safety

Evaluate trustworthiness based on age, SSL, email authentication, security headers, and blacklist status across 8 threat databases.

hepsipay.com Trust Score & Safety Analysis

75
Trust Score
35
Security
🤖 Trust Analysis

After conducting a thorough safety and legitimacy analysis, hepsipay.com receives a trust score of 75/100, which places it in the "Likely Safe" category. This score is calculated by evaluating multiple factors including SSL certificate validity, domain registration history, email authentication protocols, security header configuration, and blacklist status across major threat intelligence databases. The analysis identified several positive trust signals: a valid HTTPS connection protecting data in transit, HSTS (HTTP Strict Transport Security) enforcement preventing protocol downgrade attacks, a valid SSL certificate issued by Sectigo Limited with 148 days until expiration, SPF (Sender Policy Framework) email authentication preventing email spoofing, DMARC email authentication with a quarantine policy, and a well-established domain registered for over 10.9 years, indicating long-term commitment and legitimacy. Areas of concern include: the absence of a Content-Security-Policy header, which leaves the site more vulnerable to cross-site scripting (XSS) attacks, no X-Frame-Options header, which could allow the site to be embedded in malicious iframes (clickjacking), missing Referrer-Policy, potentially leaking URL information to third parties, the domain's WHOIS information is hidden behind a privacy service, making it harder to verify the owner's identity, and DNSSEC is not enabled, leaving DNS queries vulnerable to spoofing attacks. While these issues don't necessarily indicate malicious intent, they represent areas where the website's security posture could be improved. We checked hepsipay.com against 8 major blacklist databases including Google Safe Browsing, Phishtank, Urlhaus, Openphish, Dnsfilter, Spamhaus Dbl, Surbl, and Virustotal. The domain passed all 8 checks with a clean status, meaning it has not been flagged for phishing, malware distribution, spam, or other malicious activities by any of the tested threat intelligence providers. The domain is registered through GoDaddy.com, LLC based in TR, with a registration date of 2015-08-25 and expiration date of 2026-08-25.

HTTPS + HSTS
+12
Domain Age (11 yrs)
+10
SPF + DMARC
+6
SSL Certificate
+7
Security Headers
−5

Security Headers

Content-Security-Policy✗ Missing
HSTS✓ Set
X-Frame-Options✗ Missing
X-Content-Type-Options✓ Set
Referrer-Policy✗ Missing
Permissions-Policy✗ Missing

Blacklist Checks 8/8 Clean ✓

Google Safe Browsing
Phishtank
Urlhaus
Openphish
Dnsfilter
Spamhaus Dbl
Surbl
Virustotal

Rankings & Estimates

Tranco Rank#196,462 worldwide

🔍 Analyze Your Own Website

Check your site's trust score, security headers, tech stack and 50+ metrics — completely free.

Analyze Now →
hepsipay.com Technology Stack 3 detected

Discover every technology powering this website — from CMS and frameworks to analytics, payments, and marketing tools.

hepsipay.com Technology Stack & Detected Technologies

🤖 Stack Analysis

Our technology detection engine scanned hepsipay.com and identified 3 distinct technologies across 3 categories. This analysis is performed by examining HTTP response headers, HTML source code patterns, JavaScript library fingerprints, CSS framework signatures, and DNS records. Framework: Next.js (version css) — provides the application framework and routing for hepsipay.com. Build Tool: Webpack — bundles and optimizes the JavaScript and CSS assets for hepsipay.com. Tag Manager: Google Tag Manager — manages marketing and analytics tags without code changes for hepsipay.com. We also extracted the following tracking identifiers: Google Tag Manager container GTM-5XHGDFTD. These IDs can be used to identify other websites operated by the same organization.

⚛️ Framework
🔨 Build Tool
📊 Tag Manager

Tracking IDs Detected

gtm_idGTM-5XHGDFTD
hepsipay.com Performance & Web Vitals

Response time, compression, CDN usage, Core Web Vitals, and environmental impact metrics for hepsipay.com.

hepsipay.com Performance & Web Vitals Report

🤖 Performance Analysis

hepsipay.com delivers its homepage in 21198ms (server response time), which is considered slow by industry standards. The total page weight is 239 KB, and we detected 156 resource requests loading assets from 10 third-party domains. A high number of third-party domains can significantly impact page load time due to additional DNS lookups and TLS handshakes required for each domain. The website uses Gzip compression for text-based assets, achieving an estimated 60.0% reduction in transfer size. This reduces bandwidth usage and improves page load times, especially for visitors on slower connections. Asset minification status: 0 out of 7 CSS files and 0 out of 11 JavaScript files are minified. Minifying the remaining 18 unminified file(s) could further reduce page weight by 10-30% for those assets. Minification is a best practice that reduces download sizes without affecting functionality. From an environmental perspective, each page view of hepsipay.com produces approximately 0.12g of CO₂, earning a carbon rating of A. This places the website among the cleanest on the web, demonstrating efficient use of server resources and optimized content delivery. For reference, the average web page produces about 0.5g of CO₂ per page view. The page weight of 239 KB is the primary factor in this calculation. Core Web Vitals data from the Chrome User Experience Report (CrUX) is not available for hepsipay.com. This typically means the site doesn't have enough real-world Chrome user traffic to generate statistically significant field data, or the domain is not included in the CrUX dataset. Core Web Vitals (LCP, INP, CLS) are important Google ranking factors that measure real user experience.

Response Time21198ms Slow
Page Size239 KB
CompressionGzip 60.0% savings
CDNNot detected
Carbon / Page View0.12g · Rating A
hepsipay.com DNS & Domain Info

Complete DNS record analysis including email authentication (SPF, DMARC, DKIM), registrar details, and subdomain discovery.

hepsipay.com DNS Records, Email Authentication & Domain Registration

🤖 DNS Analysis

hepsipay.com resolves to the IPv4 address 213.74.203.13, but does not support IPv6. IPv6 adoption is increasingly important as IPv4 address space becomes exhausted, and some ISPs and regions are transitioning to IPv6-only connectivity. The domain has 1 A record(s) configured. The domain name system is managed by 4 name servers: ns-cloud-e1.googledomains.com, ns-cloud-e2.googledomains.com, ns-cloud-e3.googledomains.com, and ns-cloud-e4.googledomains.com. Having 4 name servers provides good redundancy — if one fails, the others can continue serving DNS queries. The choice of name servers often indicates the DNS hosting provider or CDN service being used. Email for hepsipay.com is handled by Google Workspace with 5 MX records configured: aspmx.l.google.com, alt1.aspmx.l.google.com, and alt2.aspmx.l.google.com and 2 more. Multiple MX records provide failover redundancy — if the primary mail server is unavailable, email will be routed to the next available server. SPF (Sender Policy Framework) is configured, which specifies which mail servers are authorized to send email on behalf of this domain. This helps prevent email spoofing and improves email deliverability. DMARC (Domain-based Message Authentication, Reporting and Conformance) is configured with a quarantine policy — a moderate setting, directing unauthorized emails to spam/junk folders. DKIM was not detected. Without DKIM, recipients cannot cryptographically verify that emails claiming to be from this domain are authentic. DNSSEC is not enabled for hepsipay.com. While not critical for most websites, DNSSEC adds an important security layer by ensuring DNS responses haven't been tampered with during transit. Enabling DNSSEC is recommended for domains handling sensitive data or financial transactions. The domain is registered through GoDaddy.com, LLC (TR). It was first registered on 2015-08-25 and is set to expire on 2026-08-25, making it 10.9 years old. Our subdomain enumeration scan discovered 4 active subdomains for hepsipay.com: api.hepsipay.com, blog.hepsipay.com, dev.hepsipay.com, and www.hepsipay.com. Active subdomains can reveal the organization's infrastructure, including development environments, API endpoints, and third-party service integrations.

IP Address213.74.203.13
ASNAS34984 · Superonline Iletisim Hizmetleri A.S.
LocationGebze, TR
Nameserversns-cloud-e1.googledomains.com
MX ProviderGoogle Workspace (aspmx.l.google.com)
RegistrarGoDaddy.com, LLC
Registered2015-08-25 (11 yrs)
Expires2026-08-25
CountryTR
SPF✓ Configured
DMARC✓ quarantine
DMARC Recordv=DMARC1; p=quarantine; rua=mailto:dmarc-reports@hepsipay.com; pct=90; sp=none
DKIM✗ Not found
DNSSEC✗ Not enabled
IPv6Not detected
WHOIS Privacy🔒 Private

Subdomains 4 found

apiblogdevwww

TXT Records / Service Verifications 5

Google ✓ +4 more
hepsipay.com Page Analysis

Content structure, media assets, cookie usage, payment methods, and social media presence for hepsipay.com.

hepsipay.com Page Content Analysis

🤖 Content Analysis

The homepage of hepsipay.com contains 476 words of visible text content. This is a moderate amount of content. The page is structured with 0 H2 headings, 0 H3 headings, 0 H4 headings. The page includes 49 images. 4 images (8%) are missing alt text attributes, which is a significant concern for both accessibility and SEO. Screen readers rely on alt text to describe images to visually impaired users, and search engines use alt text to understand image content. Only 92% of images have proper alt text — we recommend adding descriptive alt attributes to all images. The link structure consists of 41 internal links pointing to other pages on the same domain and 19 external links pointing to third-party websites. There are 11 external JavaScript files, 7 CSS stylesheets, and 0 iframes on the page. The site implements the following web standards and features: XML Sitemap (helps search engines discover all pages), robots.txt (controls search engine crawling behavior), and Schema.org structured data (Organization, Place, and PostalAddress). The website has social media presence across 5 platforms: Twitter (@hepsipay), Instagram (@hepsipay), Linkedin (@hepsipay), Youtube (@hepsipay6540), and Tiktok (@hepsipay). An active social media presence is a positive trust indicator and helps build brand awareness and customer engagement.

Word Count476 words
Images49 total · 4 missing alt · 92% alt coverage
Internal Links41
External Links19
JS Files11
CSS Files7

Social Media Presence 5 platforms

𝕏 Twitter 📸 Instagram 💼 Linkedin ▶️ Youtube 🎵 Tiktok
hepsipay.com SEO & Content Analysis

Evaluate on-page SEO factors including meta tags, Schema.org markup, content metrics, social presence, and environmental impact.

hepsipay.com SEO Analysis, Meta Tags & Content

🤖 SEO Analysis

The title tag for hepsipay.com is well-optimized at 48 characters: "Hepsipay - Güvenli Dijital Cüzdan ve Hızlı Ödeme". The length falls within the ideal range for Google search results, ensuring the full title is displayed without truncation. The meta description is 200 characters (slightly long): "Hepsipay ile tüm kartlarını dijital cüzdanında sakla, güvenli ve hızlı ödeme yap. QR kod, Hepsipara ve hızlı kredi özell...". Google typically displays up to 155-160 characters of the meta description in search results. A compelling meta description with a clear call-to-action can significantly improve click-through rates from search results. The canonical url is correctly set to https://www.hepsipay.com, preventing duplicate content issues, the page language is declared as tr, the meta robots directive is set to index, and a favicon is configured. No Open Graph tags are configured. When someone shares a link to hepsipay.com on social media, the platform will have to guess the title, description, and image — often producing unattractive or inaccurate previews. Adding OG tags is essential for social media marketing. The site implements Schema.org structured data with the following types: Organization, Place, and PostalAddress. Structured data helps search engines understand the page content and can enable rich results (featured snippets, knowledge panels, star ratings) in Google search results, which can significantly increase click-through rates.

TitleHepsipay - Güvenli Dijital Cüzdan ve Hızlı Ödeme
H1Altın yatırımlarınHepsipay'de!
Word Count476 words
Images49 total · 4 missing alt
Internal Links41
External Links19
JS Files11
CSS Files7
Meta Robotsindex
Redirect Chainhttps://hepsipay.comhttps://www.hepsipay.com/
MinificationJS: 0/11 minified · CSS: 0/7 minified
Sitemap✓ Found
Robots.txt✓ Found
Canonical✓ Set
Languagetr
Schema.orgOrganization, Place, PostalAddress
Open GraphNot set
Twitter CardNot set
PWANot detected
RSS FeedNot detected
AMPNot detected
Carbon / Visit0.12g · Rating A

Google SERP Preview

Hepsipay - Güvenli Dijital Cüzdan ve Hızlı Ödeme
https://hepsipay.com
Hepsipay ile tüm kartlarını dijital cüzdanında sakla, güvenli ve hızlı ödeme yap. QR kod, Hepsipara ve hızlı kredi özellikleriyle alışverişlerini kolaylaştır; t

META TAGS & SCHEMA.ORG

META TAGS

TitleHepsipay - Güvenli Dijital Cüzdan ve Hızlı Ödeme
Title Length48 chars Good
Meta Desc Length200 chars Too long
H1Altın yatırımlarınHepsipay'de!
Languagetr
Canonical✓ Set
Meta Robotsindex

SCHEMA.ORG & SOCIAL

Schema TypesOrganization, Place, PostalAddress
OG Type
OG ImageNot set
Twitter CardNot set
Favicon✓ Found

📊 Compare With Your Competitors

See how your website stacks up against hepsipay.com in trust, speed, security, and technology.

Compare Now →
🛡 Is this your website?

Show visitors your trust score — add a free badge to your site

Trust Score Badge Get Your Badge →