birthrightisrael.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 13375 ms crawled 2026-05-06

US · 45.60.101.205 · AS19551 Incapsula Inc

Reputation 100/100

Classifying

HTML metadata

Title: A Free Trip to Israel for Jewish Young Adults | Birthright Israel
Description: Taglit- Birthright Israel offers a FREE trip to Israel for Jewish young adults between the ages of 18 - 26 on a group tour adventure! Sign up today!
Language: int_en
Canonical: https://int.birthrightisrael.com

Open Graph

url: https://int.birthrightisrael.com
title: A Free Trip to Israel for Jewish Young Adults | Birthright Israel
description: Taglit- Birthright Israel offers a FREE trip to Israel for Jewish young adults between the ages of 18 - 26 on a group tour adventure! Sign up today!

Technology

Server: Unit
CMS: Gatsby

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (3)

www.googletagmanager.com×2
appleid.cdn-apple.com×1
use.typekit.net×1

Registration

Registrar

Network Solutions, LLC

Created

1998-12-31

Expires

2026-12-03 196 days left

Updated

2021-10-04

Name servers

ns1.easydns.com
ns2.easydns.com
ns3.easydns.org
ns6.easydns.net
remote1.easydns.com
remote2.easydns.com

DNS records live

NS

dns1.easydns.com
dns2.easydns.net
dns3.easydns.org

MX

0 birthrightisrael-com.mail.protection.outlook.com

TXT

knowbe4-site-verification=9fcccc35910182297f87c1ad720c8f00
v=spf1 ip4:212.29.236.101 include:spf.protection.outlook.com include:_spf.psm.knowbe4.com -all

Verified for

GlobalSign
Google
Microsoft 365

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q1

from 2026-03-27 to 2026-06-25

Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://int.birthrightisrael.com

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://tagmanager.google.com https://connect.facebook.net http://connect.facebook.net https://www.facebook.com https://snap.licdn.com https://px.ads.linkedin.com https://analytics.tiktok.com https://www.youtube.com https://s.ytimg.com https://bat.bing.com https://static.ads-twitter.com https://t.co https://www.googleadservices.com https://www.google.com https://googleads.g.doubleclick.net https://appleid.cdn-apple.com https://js.nagich.co.il https://*.nagich.co.il https://pixel.byspotify.com https://cdn.taboola.com https://trc.taboola.com https://www.clarity.ms https://scripts.clarity.ms https://www.redditstatic.com https://sc-static.net https://tr.snapchat.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://tagmanager.google.com https://use.typekit.net https://p.typekit.net https://*.nagich.co.il; img-src 'self' data: https: blob
strict-transport-security: max-age=31536000