indexo.dev

birthmark.org

.org crawl

First seen 2026-06-02 · Last seen 2026-06-16 · ok HTTP/1.1 200 985 ms crawled 2026-06-03

US · 67.225.255.99 · AS32244 Liquid Web, L.L.C

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Vascular Birthmarks Foundation – Vascular Birthmarks Information and Resources
Language
en-US
Generator
WordPress 6.9.4
Canonical
https://birthmark.org/

Technology

Server
Apache
CMS
WordPress 6.9.4
jQuery
3.5.1
Cookie consent
  • Iubenda
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • code.jquery.com×4
  • fonts.googleapis.com×3
  • cdn.iubenda.com×2
  • cs.iubenda.com×1
  • fonts.gstatic.com×1
  • s3.amazonaws.com×1

Social

Contact

Phone

DNS records live

NS
  • ns.liquidweb.com
  • ns1.liquidweb.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com

Email authentication partial

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; fo=1
policy: none (monitoring only)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5l9U+7uRryoi6lJjriG4IqZJ3tBRk8TnN9C3yv/XJgmOjisoeflk98jA3KTaIfICX6WW/cU7MR9QS3…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

R13
from 2026-04-30 to 2026-07-29
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://birthmark.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • weak frame protection
Header values
referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options
sameorigin, SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; style-src 'self' 'unsafe-inline' https:; img-src 'self' https: data: blob:; media-src 'self' https: data: blob:; font-src 'self' https: data:; connect-src 'self' https: blob:; frame-ancestors 'self';
strict-transport-security
max-age=31536000; includeSubDomains; preload, max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
unsafe-none
cross-origin-embedder-policy
unsafe-none; report-to='default'
cross-origin-resource-policy
cross-origin

Links to (10)

Linked from (1)

Use this data via API

Everything on this page for birthmark.org is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/birthmark.org" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →

Add a badge to your site

Own birthmark.org? Show it's tracked on indexo.dev and link visitors straight to this page.

indexo.dev — birthmark.org

<a href="https://indexo.dev/birthmark.org" target="_blank" rel="noopener">
  <img src="https://indexo.dev/birthmark.org/badge.svg" alt="indexo.dev — birthmark.org">
</a>