Is reshot.com legit?

65
/ 100
Mostly Safe
Industry: Stock Media

This site is mostly safe, but users should use caution due to its redirection away from the original service and short domain expiry. The site seems to be in a state of transition with the original 'Reshot' service having retired.

Stock Media average: 78/100 · based on 31 sites

Checked: April 27, 2026 at 1:09 PM UTC

Is reshot.com a scam? Here's what we found.

Security 90/100

The security posture is strong with modern TLS 1.3, an SSL certificate issued by Google, and present HSTS and Clickjacking protection. No threats were detected by Google Web Risk, indicating a safe browsing experience.

Identity 75/100

While the domain is very old (20 years) and registered with a reputable registrar (MarkMonitor), the short domain expiry of 47 days is a moderate concern. The DNSSEC is unsigned, which is a minor gap.

Reputation 60/100

The redirect to an announcement about 'Reshot retiring' significantly impacts its operational reputation, suggesting it's no longer performing its original function. However, the site is not on any DNS blacklists.

Transparency 70/100

Bot protection prevented checks for contact info, legal pages, and social media, making it difficult to assess transparency. The lack of a favicon is a minor cosmetic issue.

Compliance 70/100

Bot protection prevented checking for legal pages, making it impossible to assess compliance. This is a neutral finding, not necessarily a negative one, but it prevents a high score.

Infrastructure 85/100

The site benefits from good DNS resolution provided by Cloudflare with SPF and DMARC records for email authentication. The presence of a robots.txt file further indicates good site management, despite a misconfigured sitemap.

Signals Detected

[?]
Tranco Rank: Rank #209455

This site appears in the top 1 million websites

[?]
Structured Data: None found

No structured data markup found

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 20 years, 2 months

Domain created 2005-06-13T18:23:45Z (20 years, 2 months ago)

[?]
Registrar: MarkMonitor Inc.

Registered through MarkMonitor Inc.

[~]
Domain Expiry: 2026-06-13T18:23:45Z

Expires in 47 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[+]
SSL Certificate: Valid

Valid certificate, expires in 56 days

[?]
Certificate Issuer: Google Trust Services

Certificate issued by Google Trust Services

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
DNS Resolution: 2 IP(s)

Resolves to: 104.18.5.234, 104.18.4.234

[?]
Email (MX Records): None

No MX records found — domain may not handle email

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 2 server(s)

DNS providers: eleanor.ns.cloudflare.com., karl.ns.cloudflare.com.

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[?]
Sitemap: Misconfigured

Sitemap URL returns non-XML content

[+]
robots.txt: Present

robots.txt has 603 directives

[~]
Branding: Missing

No favicon found — unusual for an established business

[~]
Redirect Check: Redirects away

Site redirects to https://elements.envato.com/learn/reshot-retiring

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[?]
Website Status: Bot protection detected

Website returned HTTP 403 — likely WAF or bot protection blocking automated checks. The site is online but restricts non-browser access.

[?]
Contact Info: Unable to check

Bot protection prevented page inspection

[?]
Legal Pages: Unable to check

Bot protection prevented checking legal pages

[?]
Social Media Presence: Unable to check

Bot protection prevented page inspection

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[+]
Page Load Time: 137ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for reshot.com
<a href="https://verified.fyi/review/reshot.com"><img src="https://verified.fyi/badge/reshot.com?size=medium&style=full&theme=dark" alt="reshot.com trust score — verified.fyi" /></a>
[![reshot.com trust score](https://verified.fyi/badge/reshot.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/reshot.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

Determining the legitimacy of a website like reshot.com can be tricky, especially when facing accessibility issues. Our verified.fyi investigation into reshot.com highlights several factors you should consider before engaging with the site. First, the site's most critical problem is its current inaccessibility, returning an HTTP 403 Forbidden error. This means users cannot currently access its content or services, regardless of any other trust signals. For any legitimate online service, consistent availability is paramount. While reshot.com has a long domain history of 20 years, an impressive statistic for longevity, it raises questions as to why a site with such a history would be inaccessible and lack basic transparency. Most established sites, especially those that have been online for decades, typically maintain clear 'Contact Us' pages, social media presence, and essential legal documents like Privacy Policies and Terms of Service. Reshot.com is notably missing all of these, making it difficult to understand its purpose or who is behind it. Our advice? Even with a technically sound setup like modern TLS and Google Web Risk's clean assessment, the complete lack of transparency, legal pages, and its current inaccessibility are significant red flags. Until these fundamental issues are addressed, proceed with extreme caution. A legitimate and operational website, regardless of its industry, should always be accessible and clearly communicate with its users.