helpyousponsor.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-16 · ok HTTP/1.1 200 1768 ms crawled 2026-05-10

US · 188.114.97.3 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector nonprofit type homepage

HTML metadata

Title: Sponsorship Software & Nonprofit CRM | HelpYouSponsor
Description: The all-in-one nonprofit CRM built for sponsorship programs, donor management, mission trips, and recurring giving. Trusted by 400+ nonprofits.
Language: en
Canonical: https://helpyousponsor.com

Open Graph

url: https://helpyousponsor.com
title: HelpYouSponsor: AI Native Nonprofit CRM
description: The all-in-one nonprofit CRM built for sponsorship programs, donor management, mission trips, and recurring giving. 400+ nonprofits.

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×2

Social

Registration

Registrar

Cloudflare, Inc.

Created

2011-02-06

Expires

2027-02-06 263 days left

Updated

2026-01-27

Name servers

alexa.ns.cloudflare.com
khalid.ns.cloudflare.com

DNS records live

NS

alexa.ns.cloudflare.com
khalid.ns.cloudflare.com

MX

0 helpyousponsor-com.mail.protection.outlook.com

TXT

Show 7 TXT records

v=spf1include:spf.protection.outlook.com-all
MS=ms57833017
google-site-verification=-JWT-zo_w0clL8f44FBdlggWvMTsZbt17UBY1VYi0AM
hubspot-developer-verification=NTYwZTljYmEtMjQ2Yi00MjA4LTlmNjYtNWUzMGVlYjUxMmM1
openai-domain-verification=dv-Ox8T64Sr4kMoGhnsg2h3JoAl
sendinblue-code:98a6c7fb50b09c5c40718045b22aeaa0
slack-domain-verification=ndf8pCQ3DKruZLdDOGlwe2r5tPWedBITGHx3sP04

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

WE1

from 2026-04-18 to 2026-07-17

Expires in 59 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://helpyousponsor.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.helpyousponsor.com https://www.googletagmanager.com https://www.google-analytics.com https://tracker.metricool.com https://cal.com https://app.cal.com https://embed.cal.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: blob: https:; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https://app.helpyousponsor.com https://www.google-analytics.com https://*.google-analytics.com https://www.googletagmanager.com https://tracker.metricool.com https://blog.helpyousponsor.com https://cal.com https://app.cal.com https://api.cal.com; frame-src 'self' https://app.helpyousponsor.com https://www.googletagmanager.com https://cal.com https://app.cal.com; frame-ancestors 'self'; base-uri 'self'; form-action 'self'; object-src 'none'; upgrade-insecure-requests
strict-transport-security: max-age=63072000; includeSubDomains; preload