indexo.dev

elfaonline.org

.org crawl

First seen 2026-04-15 · Last seen 2026-05-16 · ok HTTP/1.1 200 2246 ms crawled 2026-05-09

US · 172.66.0.119 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home
Language
en-US
Canonical
https://www.elfaonline.org/

Open Graph

url
https://www.elfaonline.org/
title
Home

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Ads
  • Google Ads (DoubleClick)
Fonts
  • Adobe Fonts

Third-party hosts loaded (3)

  • use.typekit.net×5
  • securepubads.g.doubleclick.net×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
St. NW, Suite 850Washington, DC, 20006

Registration

Registrar
Network Solutions, LLC
Created
2006-08-16
Expires
2031-08-16 1914 days left
Updated
2022-05-03
Name servers
  • ns67.worldnic.com
  • ns68.worldnic.com

DNS records live

NS
  • ns67.worldnic.com
  • ns68.worldnic.com
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
TXT
Show 7 TXT records
  • google-site-verification=D4tR4qha541Cr9aaKiNP6tYYAhoUN0ABYEryH2WunE8
  • google-site-verification=Nge2VvIu_tBIm05y3ZhPnYVZ6dv_DmQS59Lpp4munzU
  • _globalsign-domain-verification=9gMr6asVBvAAJVaY3aQIbxo0G0hQfC0XH9oj65gfD5
  • mandrill_verify.-oxTITTvdEs4IOHMIhB2wQ
  • globalsign-domain-verification=d4ca47c23142190ee8c6ac26d3cd2fdb
  • 881B-B002-CA1C-C431-1B11-0D47-4737-6413
  • kN5Zv7EMfM0K1q3TjHzpaImTSPSVmlVHE+kwG+yXlIrXvikVeXmkejjyVS2C9tSRRfbz1qYdpfiHpY2xIo1UDQ==

Email authentication partial

SPF
v=spf1 ip4:74.9.142.51 ip4:34.232.90.29 ip4:3.218.40.137 include:amazonses.com a:mail.elfaonline.org include:us._netblocks.mimecast.com include:spf.protection.outlook.com include:sendgrid.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:zm8bu0vv@ag.us.dmarcian.com;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAva1X0E2lC9Te4cXLmEKnqZhNgRXZBYmfowjDYECW89V4N7cjt09TbD2fcnxMiqodWG66I7AxXlDc1F38Vy…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFf5li+YFUbs7q8g6wgAdO0nn2FcOQy4Abi8B3Pp/1YmEr2EEmPgNgcXVyWt2PXnA7A0+E80t+KOYVAfNp…
selectors probed

Certificate (current)

WE1
from 2026-04-06 to 2026-07-05
Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.elfaonline.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
font-src 'self' use.typekit.net fonts.gstatic.com; frame-src 'self' player.vimeo.com play.libsyn.com public.tableau.com www.youtube.com www.google.com *.crwdcntrl.net; img-src 'self' data: www.elfaonline.org www.googletagmanager.com mviewwebelfa.112.2o7.net files.bettybot.ai public.tableau.com prod-elfa.xperience-sites.com tasiobettyfiles.blob.core.windows.net www.google.com www.gstatic.com; script-src-elem 'self' 'unsafe-inline' assets.adobedtm.com www.google-analytics.com www.googletagmanager.com files.bettybot.ai securepubads.g.doubleclick.net public.tableau.com www.google.com www.gstatic.com tags.crwdcntrl.net; style-src-elem 'self' 'unsafe-inline' use.typekit.net p.typekit.net files.bettybot.ai fonts.googleapis.com; connect-src 'self' www.google-analytics.com www.googletagmanager.com betty-api.tasio.co qa-elfa.xperience-sites.com qa-elfa-6903e2.xperience-sites.com qa-elfa-7c6fbc.xperience-sites.com securepubads.g.doubleclick.net *.crwdcntrl.net; style-src-attr 'unsafe-inline';
strict-transport-security
max-age=2592000

Links to (6)

Linked from (7)