indexo.dev

dupagehealth.org

.org crawl

First seen 2026-05-01 · Last seen 2026-05-20 · ok HTTP/1.1 200 3103 ms crawled 2026-05-08

US · 20.114.211.29 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
DuPage County Health, IL | Official Website
Language
en

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • app-script.monsido.com×1
  • docaccess.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
Network Solutions, LLC
Created
1996-08-17
Expires
2027-08-16 452 days left
Updated
2024-08-11
Name servers
  • cbru.br.ns.els-gms.att.net
  • cmtu.mt.ns.els-gms.att.net

DNS records live

NS
  • cbru.br.ns.els-gms.att.net
  • cmtu.mt.ns.els-gms.att.net
MX
  • 0 dupagehealth-org.mail.protection.outlook.com
TXT
Show 4 TXT records
  • 0ed1fe018a7441b7fab51d45e4b5eb72a4485ae8e9
  • paloaltonetworks-site-verification=fcdd751d5a9b106439ef599c1101b86155e4f8a405a025795220da83c32e1425
  • e2ma-verification=wgtgb
  • gnHXOkruB158w7W7lD3tagcrrbRhajlYh/m4mS6ibon0w4pTRg2U5jg1MTLpEA0A/wlRbOdXuIln79umaNhQ2g==
Verified for
  • DocuSign
  • Google
  • Microsoft 365
  • Zoom

Email authentication partial

SPF
v=spf1 a mx ip4:12.239.75.201 a:hybrid.dupagehealth.org include:spf.protection.outlook.com include:_spf.e2ma.net include:mail.zendesk.com include:_vccnets.8x8.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:itsecurity@dupagehealth.org; ruf=mailto:itsecurity@dupagehealth.org; fo=1
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6qcIHfwb6UyjshDy1z0D5AStulZzGzeH/NSYVgmgjK/ExY7BE64DRA1TAlt7a3xrYGHV/rzFJYiu2AgLDUH…
selectors probed

Certificate (current)

R13
from 2026-05-01 to 2026-07-30
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.dupagehealth.org/

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (6)

Linked from (2)