hapo.org

HTML metadata

Title: HAPO Community Credit Union - Bank on More
Description: HAPO offers financial products and services that provide value to our members through all life stages—banking solutions that are easy and convenient.
Language: en
Generator: Sitefinity 15.4.8622.0 DX
Canonical: https://www.hapo.org

Technology

Server: Microsoft-IIS

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (6)

storage.buzzsprout.com×4
apis.google.com×1
cdn.userway.org×1
pro.fontawesome.com×1
use.typekit.net×1
www.googletagmanager.com×1

Contact

Phone

325181264

Registration

Registrar

MarkMonitor Inc.

Created

1996-06-02

Expires

2027-06-01 377 days left

Updated

2025-08-26

Name servers

edns123.ultradns.org
edns123.ultradns.biz
edns123.ultradns.com
edns123.ultradns.net

DNS records live

NS

edns123.ultradns.biz
edns123.ultradns.com
edns123.ultradns.net
edns123.ultradns.org

MX

10 hapo-org.mail.protection.outlook.com

TXT

Show 13 TXT records

docusign=4dca447f-e52d-4b6c-9564-5549140386da
Foxit-domain-verification=35ff252c12a939cd079747c5f4af8994
onetrust-domain-verification=42218dbffb494b34b98b4b18c8b8f6f3
globalsign-domain-verification=05d57ae48c8645bdcee2401e86985f7b
globalsign-domain-verification=57E57CA8617265E019FA995D38B1BCA6
globalsign-domain-verification=5B0396B0B0A7B8E02F4CB45DEF22AD8B
globalsign-domain-verification=63FCDD662848E927CC457F323604C7AF
globalsign-domain-verification=8719A8FAA063B672952E80A0A1E8C429
globalsign-domain-verification=8C72D62E603E27190437F04A22B30B23
sophos-domain-verification=2eec17bf233b569e0d6e3c896dd6af35d71ec3ce
+bLHmKi1G9Fso8Zc3Iu/SUsR/4EcQz5y8T4Rr4XhG8YRbzOfNoJ9xh6MqVmCJwEdmPOzU58ALSmJA0oFQMqUaQ==
Sd9-6nW-mqk
MS=ms71799142

Email authentication strong

SPF

v=spf1 ip4:139.138.106.168 ip4:149.72.49.160 include:spf.protection.outlook.com exists:%{i}._spf.sparkpostmail.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; pct=100; fo=1; rua=mailto:qmhlvfuj@ag.us.dmarcian.com; ruf=mailto:dmarc_forensic@hapo.org; aspf=s; adkim=s

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAlDZQqQ2502Z3vOoJawispRcIE6vEdH+Q62Zc0OLy34mJlwKjQCtYaN81+HGPEeO5pLjKCWHFMKEKL5YMxU…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCjuNtQdiWqc/vmskEyGjafXXT3jxDeAFgZaq/hLc2Hugy8l6r/ACJE0IDN4OQhBPMIKm0KIw9WRhXFg2GTvm…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q1

from 2026-03-20 to 2026-06-18

Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.hapo.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
weak frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN, Allow-From https://*.fwicloud.com
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.fwicloud.com;
strict-transport-security: max-age=31536000; includeSubDomains, max-age=157680000