← Back to browse

Nightmarius

A platform full of games, ideas and other projects for you to explore and share with your friends.

Games

Visit site · Added June 27, 2026 · Last analysed June 27, 2026 · via · 80% unique tagline

Own this Launch?
Screenshot of Nightmarius

StackScope is a free public catalogue of indie launches. We find launches on Product Hunt, Hacker News and similar feeds, then crawl each site to detect its tech stack and score it for launch readiness: DNS, security headers, SEO basics. This page is what we saw on 27 June 2026; the live site may have changed since.

Nightmarius is largely in shape, with a thorough launch checklist, well-configured email security, and fast page loads. Worth fixing first: missing several security headers, incomplete legal pages, and tracking cookies set before any opt-in.

Launched on Product Hunt on June 27, 2026. The site is hosted on hosttech-AS - hosttech GmbH in Switzerland, with a domain registered in 2023. The crawl picked up 5 technologies on this site, covering analytics, DNS providers, javascript library, and servers. The stack includes Cloudflare DNS, Google Analytics, and Google Tag Manager.

If you own this site, refresh the snapshot and see the full fix list any time →

6.1
StackScope Score
Good
88/100 Launch Readiness
Launch ready
3/6 Security Headers
Decent
0/3 Legal
Missing
2/2 Web Standards
Complete
72/100 Performance
Fast
Vibe Score 0 · No AI signals
Informational pattern-match signal. Does not feed the StackScope Score. See which fingerprints fired →

Tech Stack (5)

Infrastructure
DNS Cloudflare DNS
Server nginx
Build & Framework
JavaScript library React Router
Analytics & Marketing
Analytics Google Analytics (4)
Tag management Google Tag Manager medium

Infrastructure

Network
hosttech-AS - hosttech GmbH, CH
AS207143 · CH
DNS
Cloudflare DNS
Authoritative nameserver
DNSSEC
Enabled
DNSKEY records published. DNS responses signed.
Green hosting
Not green hosted
No green-energy record. Data from The Green Web Foundation.
SSL Certificate
Let's Encrypt
Valid 7 Jun 2026 to 5 Sep 2026
Certificate as captured in this snapshot, not a live check.
Domain Age
3.2 years
Registered May 2023 · Cloudflare, Inc.

Email Security

SPF ~all Soft-fail (~all). Common and accepted.
?
DKIM Not detected at common selectors. Your provider may use a custom one.
DMARC p=quarantine Quarantine (moderate)
?
MTA-STS Not deployed. Mail to your domain can be downgraded to plaintext en route.
?
TLS-RPT Not configured. You won't hear about silent SMTP TLS handshake failures.

Storage (5)

Cookies (3)
NameLifetimeDetected as
customCookie session -
_ga 1y Google Analytics
_ga_6VJ2MQCTLB 1y Google Analytics
Local storage (2)
KeySizeDetected as
password 20 B -
username 5 B -

Readiness Breakdown How?

Custom title and meta description
Open Graph tags (title, image, description)
Twitter card meta tags
Responsive viewport meta tag
Favicon present
Semantic HTML (nav, main, article)
- Canonical URL declared

Performance How?

152 ms Server response
81% Faster than peers
548 ms Largest contentful paint
0.36 Cumulative layout shift
1.8 MB Page weight
1.6 MB Image weight
1 Third-party domains
1 Console errors
1 Failed requests

7 images: 1 oversized, 7 without width/height

Broken first-party requests (1), worth fixing
  • 403 /user/get

Indicative grade from a single automated render, not a substitute for Lighthouse or field data, and not part of the StackScope score.

AI Stance

No AI stance declared
llms.txt published
No AI bots blocked in robots.txt
Content-Signal
? No directive declared
Link headers
? None advertised

Well-Known Files

robots.txt
sitemap.xml (31 URLs)
security.txt
llms.txt
ads.txt
humans.txt

Legal

? Privacy Policy not detected
? Terms of Service not detected
? Consent manager not detected
Analytics set tracking cookies on our visit, with no opt-in step.
Detection works best on English language sites.

Security Headers (3/6)

Referrer-Policy
X-Frame-Options
Permissions-Policy experimental (check browser support)
X-Content-Type-Options
Content-Security-Policy
Strict-Transport-Security
X-XSS-Protection deprecated (use Content-Security-Policy)

Build

2 JS files
1 CSS files
1 Third-party domains

Brand Colours

App Manifest

Nightmar
display: standalone 1 icon
theme #f80
Something not look right? If a technology shown here is wrong or out of date, email [email protected] and we'll review it.