indexo.dev

frontroyalva.com

.com crawl

First seen 2026-04-23 · Last seen 2026-05-18 · ok HTTP/1.1 200 4973 ms crawled 2026-05-17

US · 192.196.0.77 · AS393775 IP Pathways, LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Portal - 2022 | Front Royal, VA
Language
en

Technology

Server
Microsoft-IIS
Social widgets
  • Vimeo Embed

Third-party hosts loaded (2)

  • docaccess.com×1
  • player.vimeo.com×1

Registration

Registrar
Gandi SAS
Created
2003-04-05
Expires
2027-04-05 321 days left
Updated
2026-03-01
Name servers
  • ns-1230.awsdns-25.org
  • ns-1598.awsdns-07.co.uk
  • ns-380.awsdns-47.com
  • ns-930.awsdns-52.net

DNS records live

NS
  • ns-1230.awsdns-25.org
  • ns-1598.awsdns-07.co.uk
  • ns-380.awsdns-47.com
  • ns-930.awsdns-52.net
MX
  • 0 frontroyalva-com.mail.protection.outlook.com
TXT
Show 6 TXT records
  • MS=ms87316722
  • apple-domain-verification=1W0p5ihL84oDp0ox
  • box-domain-verification=a0f7034c2738582bb56f086bc01e3a6b9b15437bee1e32fa76e7d6535698122c
  • duo_sso_verification=xStGfJ7RHi02mBHswB2zk3xEmHeWHlfwUSCbcdzX127vDaqEFjRXlnAo9RPvNUEx
  • google-site-verification=DbhFZu3tlxIjzq641pI6nfBl8_cX-FbCWYD9PlfSClI
  • sophos-domain-verification=8cc2636d236045e3c683f38424099174ee333c9f49af930525967de95c69ad1b

Email authentication weak

SPF
v=spf1 ip4:204.111.204.67 ip4:204.111.204.72 ip4:204.111.204.76 ip4:67.192.109.138 ip4:67.192.80.122 ip4:23.253.114.156 ip4:104.130.147.202 include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
not published
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtR1XZIWal8HZdnQQTam2RA08I9JfjUY550/DLCmyKcm1q42c7W6sRG9uWj8tw9CScOcERqH0X7vRm4Swl+…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0F9ZkT4gE7PGUndXPF5PZq+hL7rlFOsOTTFg/fQh0XpkFREKS1dGUcRGpOU12lJSqutrS4j0YTIxx45AGp…
selectors probed

Certificate (current)

R13
from 2026-05-13 to 2026-08-11
Expires in 85 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://frontroyalva.com/714/Portal---2022

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (2)

Linked from (2)