indexo.dev

globalcovenantofmayors.org

.org crawl

First seen 2026-04-15 · Last seen 2026-05-18 · ok HTTP/1.1 200 1660 ms crawled 2026-05-11

DE · 35.242.218.28 · AS396982 Google LLC

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title
Home - Global Covenant of Mayors
Language
en-US
Generator
Powered by WPBakery Page Builder - drag and drop page builder for WordPress.
Canonical
https://www.globalcovenantofmayors.org/

Open Graph

url
https://www.globalcovenantofmayors.org/
title
Home - Global Covenant of Mayors
locale
en_US
site name
Global Covenant of Mayors

Technology

Server
nginx
CMS
WordPress
Analytics
  • Matomo

Third-party hosts loaded (2)

  • cdn.weglot.com×1
  • gcom.matomo.cloud×1

Social

Contact

Email

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2016-06-16
Expires
2027-06-16 391 days left
Updated
2026-05-07
Name servers
  • udns1.cscdns.net
  • udns2.cscdns.uk

DNS records live

NS
  • udns1.cscdns.net
  • udns2.cscdns.uk
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 5 TXT records
  • airalo-domain-verification=Q59Kj10P6HRFv6v
  • jamf-site-verification=RP-cpB57xnd-cf0I6HEd0Q
  • sophos-domain-verification=5732dad7c20777ce72b0fe75beb4a26c1134351419fa4390bf3d1a7e64cedbbb
  • M0A0N59179
  • 1b8gj0ypdtpp8zzmrmn9xqkhmbvpprf2
Verified for
  • Apple
  • Canva
  • Microsoft 365

Email authentication weak

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
not published
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-03-30 to 2026-10-15
Expires in 147 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.globalcovenantofmayors.org/

present
  • x-frame-options
findings
  • missing HSTS
  • missing Content Security Policy
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN

Links to (16)

Linked from (7)