indexo.dev

efdss.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-16 · ok HTTP/1.1 200 3280 ms crawled 2026-05-08

US · 188.114.96.3 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
English Folk Dance and Song Society - English Folk Dance and Song Society: The National Organisation for the Development of the Folk Arts
Language
en-gb
Generator
Joomla! - Open Source Content Management

Open Graph

url
https://www.efdss.org/
title
Home
locale
en-GB
site name
English Folk Dance and Song Society
description

Technology

CDN
Cloudflare
CMS
Joomla
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • webcomponents.spektrix.com×2
  • cc.cdn.civiccomputing.com×1
  • fonts.googleapis.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
1998-10-28
Expires
2026-10-27 161 days left
Updated
2025-12-11
Name servers
  • jim.ns.cloudflare.com
  • tess.ns.cloudflare.com

DNS records live

NS
  • jim.ns.cloudflare.com
  • tess.ns.cloudflare.com
MX
  • 10 aspmx.l.google.com
  • 20 alt1.aspmx.l.google.com
  • 30 alt2.aspmx.l.google.com
  • 40 aspmx2.googlemail.com
  • 50 aspmx3.googlemail.com
TXT
  • v=verifydomain MS=1264213
  • google-site-verification=1oha-6GEMX5m7S0hBGUKLHu2rJ6MYjWt0rxfozwWzfs
  • google-site-verification=l_28NgiwYGQQal0Ub3Hr_Y6ICcE6oQO2W8JTgg8egy4

Email authentication weak

SPF
v=spf1 a mx include:_spf.google.com include:mailgun.org ~all
softfail (~all)
DMARC
not published
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDrwIdyPBwmN/cKNj7XgFp7SdHhQYduOCFIDgWH58oCpDQd3v58ua/KyyFIRHYBRFRxJaL/dYcHsCrnVo+dVr…
selectors probed

Certificate (current)

WE1
from 2026-04-14 to 2026-07-13
Expires in 56 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.efdss.org/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' *.efdss.org *.vwml.org validaid.org embedsocial.com *.joomla.org *.patronbase.com bandcamp.com *.addthisedge.com logwork.com *.logwork.com *.pinterest.com *.google-analytics.com *.instagram.com *.twimg.com *.cloudflare.com *.cloudflareinsights.com *.civiccomputing.com *.pardot.com *.facebook.net *.facebook.com *.myfonts.net *.pcapredict.com *.googletagmanager.com *.postcodeanywhere.co.uk *.facebook.com *.doubleclick.net *.google.com *.google.co.uk *.googleapis.com fonts.gstatic.com *.youtube.com *.youtu.be *.vimeo.com *.spotify.com *.soundcloud.com *.staticflickr.com *.addthis.com *.twitter.com twitter.com *.embedsocial.com *.spektrix.com sysfilessacbe149174fee.blob.core.windows.net *.buzzsprout.com blob:; img-src * data: blob:; font-src fonts.gstatic.com *.cloudflare.com 'self' data:;

Links to (8)

Linked from (9)