indexo.dev

gfafcu.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-13 · ok HTTP/1.1 200 3821 ms crawled 2026-05-13

US · 52.5.250.136 · AS14618 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Credit Union in Massachusetts at GFA Credit Union
Description
Discover a credit union in Massachusetts dedicated to Better Banking. Our services include loans, checking and savings accounts.
Language
en
Canonical
https://www.gfafcu.com

Technology

Analytics
  • Google Tag Manager
Third-party hosts loaded (8)
  • www.googletagmanager.com×4
  • ajax.aspnetcdn.com×3
  • ajax.googleapis.com×2
  • cdnjs.cloudflare.com×2
  • api.glia.com×1
  • cdn.segmint.net×1
  • platform-api.sharethis.com×1
  • www.facebook.com×1

Social

Contact

Phone
Address
229 Parker St.,Gardner,Massachusetts01440US

Registration

Registrar
GoDaddy.com, LLC
Created
1997-07-24
Expires
2026-07-23 64 days left
Updated
2025-06-25
Name servers
  • dns1.cocci.com
  • dns2.cocci.com

DNS records live

NS
  • dns1.cocci.com
  • dns2.cocci.com
MX
  • 10 gfafcu-com.mail.protection.outlook.com
TXT
Show 13 TXT records
  • MS=ms84048041
  • be81d0462613720882362ec3ba489d22
  • 87srdk71pqlco4s9rng8lhmobn
  • ms-domain-verification=b07a3f87-a695-4758-a9da-f83d4b5ed298
  • iContact1781245
  • mandrill_verify.fxooiy0q5EgZZaLF_rtOYg
  • apple-domain-verification=Vr1dHX93pnN1wS46
  • remarkable-domain-verification=31a20646-ca7e-435a-8ad1-2d8f363a98e9
  • TEB266H4M9C22GAP6S6N2INIP1
  • MS=1D0D7E10E3E1EC5EE5B5DC5FE4440A1E8D867F32
  • MS=ms51825451
  • 7PN4K4QCQBEN1PFCC99LTUGDCF
  • HL80QADODOSQJ7RDL1DLG7IBDM

Email authentication strong

SPF
v=spf1 mx include:spf.cocci.com include:spf.protection.outlook.com include:spf.digitalinsight.com include:spfref.jackhenry.com a:monitor.ensenta.com a:phishtest.knowbe4.com include:_external.pscu.com ip4:67.135.240.0/24 ip4:216.66.216.9 ip4:209.164.59.5 ip4:173.195.98.200 ip4:216.134.200.226/32 ip4:209.198.203.132/32 -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; pct=100; adkim=r; aspf=r; ruf=mailto:dkimauthfail@gfafcu.com; rua=mailto:dkimaggrep@gfafcu.com; fo=0
policy: quarantine
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoatjxSNvwdHoHoJit8WrusVNBLdOJRVanqa/nMqc2wKb55fwejWjB1k0LP/k5lYrYaymhuvMGq4Ib9…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7pnf1JfaBYQ71wlA5FfvH8KzmqYwtvpKgKZFjSu1yF3GdESaJ9HPa1eYkSBaPlIWZgCsOtpVu1Ittmjqo3…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ta3VNqAb/n50KpQwwOOLWB+97d8VuBmvfyPb2c9WZmstLn0TZTFmP0AVQ9KmXfGjsFIOFnl6/4BJwZSZr…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-08-31 to 2026-10-02
Expires in 136 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://gfafcu.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'unsafe-eval' 'unsafe-inline' 'self'; script-src 'unsafe-eval' 'unsafe-inline' 'self' *; style-src 'unsafe-eval' 'unsafe-inline' 'self' https://cdnjs.cloudflare.com https://*.salemove.com https://*.glia.com; object-src 'none'; base-uri 'self'; connect-src 'self' *; font-src 'self' data:; frame-src 'self' *; img-src 'self' * blobe: data:; manifest-src 'self'; media-src 'self' https://*.salemove.com https://*.glia.com; report-uri https://660d793b77c15b585b4a5dec.endpoint.csper.io/?v=2; worker-src 'self' *;
strict-transport-security
max-age=31536000; includeSubDomains

Links to (14)

Linked from (1)