hawkstars.org

.org crawl

First seen 2026-04-21 · Last seen 2026-05-14 · ok HTTP/1.1 200 1352 ms crawled 2026-05-14

FR · 173.249.37.176 · AS51167 Contabo GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Associação HawkStars - Educação, Inovação e Desenvolvimento

Description

Página Inicial Sobre a Associação HawkStars. Aqui podes ver os nosso projetos locais e internacionais e na comunidade.

Language

Generator

Next.js

Canonical

https://hawkstars.org/pt

Translations

Open Graph

title: Associação HawkStars - Educação, Inovação e Desenvolvimento
site name: Hawk Stars NGO
description: Página Inicial Sobre a Associação HawkStars. Aqui podes ver os nosso projetos locais e internacionais e na comunidade.

Technology

Server: nginx
CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (2)

www.googletagmanager.com×1
www.linkedin.com×1

Social

Contact

Address: Pinhel, PT

Registration

Registrar

PDR Ltd. d/b/a PublicDomainRegistry.com

Created

2022-09-01

Expires

2030-09-01 1565 days left

Updated

2025-10-19

Name servers

ns5.mydnspt.net
ns6.mydnspt.net

DNS records live

NS

ns1.contabo.net
ns2.contabo.net
ns3.contabo.net

MX

1 smtp.google.com

TXT

google-site-verification=fFtoPG-JTKdhfyhRgVna6RNurT1YtE0VW4J85u4_vc8

Email authentication weak

SPF: not published
DMARC: v=DMARC1;p=none;sp=none;
policy: none (monitoring only) · sp=none
DKIM: no key found at common selectors

Certificate (current)

from 2026-03-20 to 2026-06-18

Expires in 30 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://hawkstars.org/pt

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(),microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' blob: https://www.googletagmanager.com https://upload-widget.cloudinary.com https://www.instagram.com/embed.js 'unsafe-inline'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; img-src 'self' blob: data: www.googletagmanager.com https://*.unsplash.com https://*.cdninstagram.com https://*.cloudinary.com https://*.googleapis.com https://*.gstatic.com *.google.com *.googleusercontent.com; font-src 'self' https://fonts.gstatic.com data:; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self'; block-all-mixed-content; upgrade-insecure-requests; frame-src 'self' *.google.com https://www.instagram.com/ https://upload-widget.cloudinary.com https://www.youtube.com https://www.youtube-nocookie.com/; connect-src 'self' *.google-analytics.com *.de.sentry.io https://*.googleapis.com *.google.com https://*.gstatic.com data: blob:; media-src 'self' https://www.youtube.com;
strict-transport-security: max-age=63072000; includeSubDomains; preload

Links to (5)

Linked from (1)

jamminstudio.co×2