indexo.dev

handtoolhaven.org

.org crawl

First seen 2026-04-22 · Last seen 2026-05-12 · ok HTTP/1.1 200 1106 ms crawled 2026-05-16

AU · 103.169.142.0 · AS209242 Cloudflare London, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Hand Tool Haven 2026
Language
en

Open Graph

title
Hand Tool Haven 2026

Technology

CDN
Cloudflare

Registration

Registrar
GoDaddy.com, LLC
Created
2025-06-09
Expires
2028-06-09 751 days left
Updated
2025-06-14
Name servers
  • ns59.domaincontrol.com
  • ns60.domaincontrol.com

DNS records live

NS
  • ns59.domaincontrol.com
  • ns60.domaincontrol.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • canva-domain-verify=a80dcd77-9a0b-4367-b46d-aee39aa502bd
  • google-site-verification=X1vpN-uEJ-TRVIwk6qJD1pu_eiqLQselZfyKidJSZTI

Email authentication strong

SPF
v=spf1 include:dc-aa8e722993._spfm.handtoolhaven.org ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; adkim=r; aspf=r; rua=mailto:dmarc_rua@onsecureserver.net;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

WR1
from 2026-05-06 to 2026-08-04
Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://handtoolhaven.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' *.canva.com canva.com; report-uri https://csp.canva.com/_cspreport?app=websites; base-uri 'self'; object-src 'none'; script-src 'report-sample' 'strict-dynamic' 'nonce-0ad3e0a0-36f1-4d7e-9429-88daf4dd5212' 'wasm-unsafe-eval' https://www.google.com/recaptcha/api.js;
strict-transport-security
max-age=31536000

Linked from (1)