indexo.dev

ggcvvwca.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-11 · ok HTTP/1.1 200 4705 ms crawled 2026-05-08

US · 198.49.23.145 · AS53831 Squarespace, Inc.

Reputation 67/100 wrong cert no dmarc policy

Classifying

HTML metadata

Title
GGCVVWCA
Language
en-US

Open Graph

url
https://www.ggcvvwca.org/
title
GGCVVWCA
description
Welcome to our website. The Golden Gate Chapter of the Vintage Volkswagen Club of America is open to anyone with an interest in air-cooled Volkswagens. Ownership of a VW is not a prerequisite. Since we are a subgroup of the Vintage Volkswagen Club Of America, it is recommended that you also become

Technology

Server
ESF
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Social widgets
  • YouTube Embed
Third-party hosts loaded (7)
  • lh3.googleusercontent.com×15
  • www.youtube.com×3
  • fonts.googleapis.com×2
  • www.gstatic.com×2
  • apis.google.com×1
  • ssl.gstatic.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
Squarespace Domains II LLC
Created
1999-06-01
Expires
2033-06-01 2569 days left
Updated
2025-07-17
Name servers
  • ns-cloud-b1.googledomains.com
  • ns-cloud-b4.googledomains.com
  • ns-cloud-b2.googledomains.com
  • ns-cloud-b3.googledomains.com

DNS records live

NS
  • ns-cloud-b1.googledomains.com
  • ns-cloud-b2.googledomains.com
  • ns-cloud-b3.googledomains.com
  • ns-cloud-b4.googledomains.com
MX
  • 10 mxa.mailgun.org
  • 10 mxb.mailgun.org

Email authentication weak

SPF
v=spf1 include:mailgun.org ~all
softfail (~all)
DMARC
not published
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHYj6WOCn/3pixPjpn5ILnyNlt/e6WtcEydplzxJLZW0SnglgT7EjGzty22+5fXVRcVngHNsb//ePxwJ06dKgp1jwmkd6…
selectors probed

Certificate (current) wrong cert

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2026-02-10 to 2027-03-04
Expires in 288 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.ggcvvwca.org/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
origin
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'report-sample' 'nonce-ekD8MerbOTTZxnVPr7j2dA' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
cross-origin-opener-policy
unsafe-none
cross-origin-resource-policy
same-site

Links to (12)

Linked from (2)