indexo.dev

cityofcripplecreek.com

.com crawl

First seen 2026-05-16 · Last seen 2026-05-20 · ok HTTP/1.1 200 5182 ms crawled 2026-05-20

US · 104.18.24.222 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Home Page | Cripple Creek, CO
Language
en
Generator
Drupal 11 (https://www.drupal.org)
Canonical
https://www.cityofcripplecreek.com/

Open Graph

title
Home Page
site name
Cripple Creek, CO

Technology

CDN
Cloudflare
CMS
Drupal

Third-party hosts loaded (2)

  • docaccess.com×1
  • static.addtoany.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2016-02-25
Expires
2027-02-25 279 days left
Updated
2026-02-20
Name servers
  • ns1.springshosting.net
  • ns2.springshosting.net
  • ns3.springshosting.net
  • ns4.springshosting.net

DNS records live

NS
  • ns1.springshosting.net
  • ns2.springshosting.net
  • ns3.springshosting.net
  • ns4.springshosting.net
MX
  • 0 cityofcripplecreek.com

Email authentication weak

SPF
v=spf1 ip4:162.244.69.82 +a +mx +ip4:162.244.69.98 ~all
softfail (~all)
DMARC
not published
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2RBrlHVqYvtWoPYAngK+hoLfpcLg/5GG9iMLGqVUW1S7pdIYnO9bkElSaE2iYI2WUPKh1bKSaJHvX…
selectors probed

Certificate (current)

WE1
from 2026-05-07 to 2026-08-05
Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.cityofcripplecreek.com/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
Header values
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), attribution-reporting=(), autoplay=*, bluetooth=(), browsing-topics=(), camera=(), compute-pressure=(), display-capture=*, encrypted-media=(), geolocation=(), gyroscope=(), hid=(), identity-credentials-get=(self), idle-detection=(), local-fonts=(self), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-get=(self), screen-wake-lock=(), serial=(), storage-access=(), usb=(), web-share=(), window-management=(), xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' * blob: data:; script-src * about: 'unsafe-inline' 'unsafe-eval'; object-src 'self'; style-src * 'unsafe-inline'; img-src * data: blob:; media-src * blob: data:; frame-ancestors 'self'

Links to (5)

Linked from (1)