indexo.dev

ccaf.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-16 · ok HTTP/1.1 200 7087 ms crawled 2026-05-13

US · 208.109.69.155 · AS398101 GoDaddy.com, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Constitution Capital Access Fund | CCAF
Description
CCAF | Constitution Capital Access Fund is managed by Constitution Capital Partners and provides individual investors access to the broad portfolio of private equity and private credit investments.
Language
en

Technology

Server
Apache
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Social widgets
  • Vimeo Embed
Third-party hosts loaded (9)
  • player.vimeo.com×12
  • cdn.amcharts.com×3
  • cdn.jsdelivr.net×2
  • fonts.googleapis.com×2
  • vjs.zencdn.net×2
  • code.jquery.com×1
  • fonts.gstatic.com×1
  • s3.amazonaws.com×1
  • www.googletagmanager.com×1

Contact

Email
Phone

Registration

Registrar
GoDaddy.com, LLC
Created
2004-06-10
Expires
2026-06-10 21 days left
Updated
2026-01-23
Name servers
  • ns11.domaincontrol.com
  • ns12.domaincontrol.com

DNS records live

NS
  • ns11.domaincontrol.com
  • ns12.domaincontrol.com
MX
  • 0 ccaf-com.mail.protection.outlook.com
  • 10 mailgwny01.accessabacus.com
  • 10 mailgwsf01.accessabacus.com
  • 20 mailgwny02.accessabacus.com
  • 20 mailgwsf02.accessabacus.com
TXT
  • MS=ms92806747
  • pardot1063352=7ed9da16e997377e06354aa9f3a6824ccbcf905615c493a5110b9350996b389f
  • google-site-verification=_ZX4jAE6b-GL-aqKJWsLntxxhpA7iRTElf8ViuF0u0M

Email authentication strong

SPF
v=spf1 mx include:msg.accessabacus.com include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:dmarcreports@abacusgroupllc.com; ruf=mailto:dmarcreports@abacusgroupllc.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-09-23 to 2026-10-25
Expires in 159 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://ccaf.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), geolocation=(), gyroscope=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
media-src 'self'; report-uri 'self'; child-src 'none'; form-action 'self'; frame-ancestors 'none'; object-src 'self'; frame-src *; worker-src 'self'; manifest-src 'self'; navigate-to 'self'; base-uri 'self'
strict-transport-security
max-age=31536000; includeSubDomains

Links to (2)

Linked from (2)