foundation.app
HTML metadata
Technology
- CDN
- Vercel
- CMS
- Next.js
Third-party hosts loaded (1)
- pbs.twimg.com×12
Social
DNS records live
- NS
-
- ns-1331.awsdns-38.org
- ns-1760.awsdns-28.co.uk
- ns-435.awsdns-54.com
- ns-549.awsdns-04.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
apple-domain-verification=a8Vx4g797R5zTFaEgoogle-site-verification=UJZslpKlyx_g7eQX53GV-tSV3s9o7rM1NEfdEDugFk8
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@foundation.app; pct=100; adkim=s; aspf=spolicy: quarantine - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOhTf0pW4BZaoYjPmnbm236PxFz5UV+maoyEqsorq04Oi62Emqhp8sD1Yf0kC0wif/ow2ylIt+/hen…
selectors probed - google:
Certificate (current)
R13
Expires in 68 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=(), interest-cohort=(), serial=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://va.vercel-scripts.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https://pbs.twimg.com https://abs.twimg.com; font-src 'self' data:; connect-src 'self' https://vitals.vercel-insights.com https://va.vercel-scripts.com; media-src 'self' https://video.twimg.com; frame-ancestors 'none'; form-action 'self'; base-uri 'self'; object-src 'none'; upgrade-insecure-requests- strict-transport-security
max-age=63072000; includeSubDomains; preload- cross-origin-opener-policy
same-origin
Links to (2)
Linked from (25)
- cryptohublink.com×3
- navzh.com×3
- edgarallanpoets.com×2
- tribute-hwf.com×2
- carolinadebartolo.com×2
- lossumergidos.com×2
- monoxpoly.com×2
- detroitunderground.net×2
- mchrbn.net×2
- brendandawes.com×2
- krisgraves.com×2
- johnprovencher.com×2
- herity.io×2
- wenzeldaniel.com×2
- knownorigin.io×2
- thousandetherhomepage.com×2
- bidaka.com×2
- imaginaryones.com×1
- kaiyokoyama.com×1
- treyratcliff.com×1
- martinbaileyphotography.com×1
- nikolatosicpoetry.com×1
- colerise.com×1
- iainball.com×1
- aisam.xyz×1