indexo.dev

ctbto.org

.org crawl

First seen 2026-04-12 · Last seen 2026-05-08 · ok HTTP/1.1 200 526 ms crawled 2026-05-06

US · 104.20.8.132 · AS13335 Cloudflare, Inc.

Reputation 97/100 dmarc monitor-only

sector government type homepage

HTML metadata

Title
Homepage | CTBTO
Language
en
Generator
Drupal 11 (https://www.drupal.org)
Canonical
https://www.ctbto.org/

Technology

CDN
Cloudflare
CMS
Drupal
Analytics
  • Cloudflare Insights
  • Google Tag Manager
Social widgets
  • Twitter Widget

Third-party hosts loaded (3)

  • platform.twitter.com×1
  • static.cloudflareinsights.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
Network Solutions, LLC
Created
1997-09-02
Expires
2028-09-01 836 days left
Updated
2024-08-24
Name servers
  • demi.ns.cloudflare.com
  • mark.ns.cloudflare.com

DNS records live

NS
  • demi.ns.cloudflare.com
  • mark.ns.cloudflare.com
MX
  • 20 ctbto-org.mail.protection.outlook.com
TXT
Show 5 TXT records
  • 3VoySu4G5YjNEdFObRNXuNhGzlusukHUJ+cDUTPwVoAAlvvLmXSAWDemCnMNH6PLND1pf4F83o8LWDobTrW1iQ==
  • Comprehensive Nuclear Test-Ban-Treaty Organization, PO Box 1200, A-1400, Vienna, Austria.
  • cisco-ci-domain-verification=77cf613afabd5e2d11c0cf0d91bfd6a7b31cf7dd6f9f2657018708bc536aeada
  • docusign=6c1af28b-d6b5-45d0-8115-9005257eef1a
  • google-site-verification=VrQutfDGp6u1fz2j6WRn_JFrdQNnBHjwlt_E20H4aso

Email authentication strong

SPF
v=spf1 mx:ctbto.org ip4:193.218.117.0/24 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; pct=100; rua=mailto:dirlwgyn@ag.eu.dmarcian.com; ruf=mailto:dirlwgyn@fr.eu.dmarcian.com
policy: none (monitoring only) · sp=none
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNlrcOa6W+2z6KM0vWP2yB4D403Nz+Y0lJd2UusUaeCgdwkZ2qG1jfTB6hH6S7bYnCo1CdgBbzv9D/scGcz…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBY3u3NfqlJJl0auBVxTdsthlm18PdzcNl+lgQbhd9+vkdbAMksP0PU+m0gFcJZ7XAaiLiRj7TokwA4wMPLV…
selectors probed

Certificate (current)

WE1
from 2026-03-22 to 2026-06-20
Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.ctbto.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
ALLOW-FROM https://f17f4b3e9f.translations.weglot.io
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' *.weglot.io *.weglot.com *.soundcloud.com cdnapisec.kaltura.com www.kaltura.com youtube.com *.youtube.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ *.twitter.com *.twimg.com www.google-analytics.com weglot.com *.weglot.com cdn-api-weglot.com *.cdn-api-weglot.com; script-src 'self' 'unsafe-inline' *.weglot.io weglot.com *.weglot.com cdn-api-weglot.com *.cdn-api-weglot.com https://bam.nr-data.net https://bam-cell.nr-data.net https://js-agent.newrelic.com https://widgets.flickr.com embedr.flickr.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ *.youtube.com *.twitter.com *.twimg.com www.googletagmanager.com www.google-analytics.com https://ssl.google-analytics.com static.cloudflareinsights.com ajax.cloudflare.com; object-src 'none'; style-src 'self' 'unsafe-inline' *.weglot.io weglot.com *.weglot.com cdn-api-weglot.com *.cdn-api-weglot.com fonts.googleapis.com; img-src 'self' https://live.staticflickr.co
strict-transport-security
max-age=31536000

Links to (5)

Linked from (3)