indexo.dev

hdyo.org

.org crawl

First seen 2026-05-02 · Last seen 2026-05-09 · ok HTTP/1.1 200 2624 ms crawled 2026-05-08

DE · 176.9.56.111 · AS24940 Hetzner Online GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Huntington's Disease Youth Organization

Technology

Server
nginx
Analytics
  • Plausible

Third-party hosts loaded (1)

  • plausible.io×1

Social

Contact

Email
Phone

Registration

Registrar
Porkbun LLC
Created
2010-11-17
Expires
2026-11-17 182 days left
Updated
2024-11-06
Name servers
  • maceio.ns.porkbun.com
  • curitiba.ns.porkbun.com
  • salvador.ns.porkbun.com
  • fortaleza.ns.porkbun.com

DNS records live

NS
  • curitiba.ns.porkbun.com
  • fortaleza.ns.porkbun.com
  • maceio.ns.porkbun.com
  • salvador.ns.porkbun.com
MX
  • 1 hdyo-org.mail.protection.outlook.com
TXT
  • MS=ms89241349
  • google-site-verification=HFIxrZijVk6QqIj3rsxNGRbheUUForIJj_zNLvcoXCA

Email authentication partial

SPF
v=spf1 include:amazonses.com include:spf.protection.outlook.com include:_spf.google.com include:servers.mcsv.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCB9ILtnLVLUmWxjVpdIvNWaL3cb0Cy7c3evOWo9z+mu/JBlOCixFx8l1Ps0I7OzKZDaIvE+Odt5hQz0FY…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5GwmYnnQjPCSNVoDL5aI83jWaRH7k6yLLLZ1/Pl9UTwkKDpDOUF2BnTpwZ2DALO3W5vRt3G/c0ns5rK4+b…
selectors probed

Certificate (current)

R13
from 2026-03-22 to 2026-06-20
Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.hdyo.org/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-content-type-options
nosniff
content-security-policy
default-src https: 'self' hdyo.org *.hdyo.org; font-src 'self' data: https: codev.uk; frame-ancestors 'self' https: plausible.io; frame-src 'self' https: plausible.io; img-src 'self' https: data:; object-src 'none'; script-src 'self' https: 'unsafe-inline' plausible.io; style-src 'self' https: 'unsafe-inline'; worker-src 'self' blob: https: hdyo.org *.hdyo.org plausible.io
strict-transport-security
max-age=15552000; preload

Links to (13)

Linked from (2)