hesaa.org
HTML metadata
Technology
- Server
- Microsoft-IIS
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (5)
- www.googletagmanager.com×4
- cdnjs.cloudflare.com×3
- ajax.googleapis.com×2
- code.jquery.com×2
- maxcdn.bootstrapcdn.com×2
Registration
- Registrar
- Network Solutions, LLC
- Created
- 1999-04-12
- Expires
- 2030-04-12 1424 days left
- Updated
- 2021-04-06
- Name servers
-
- auth03.ns.uu.net
- auth50.ns.uu.net
DNS records live
- NS
-
- auth03.ns.uu.net
- auth50.ns.uu.net
- MX
-
- 2 d145272a.ess.barracudanetworks.com
- 4 d145272b.ess.barracudanetworks.com
- TXT
-
Show 6 TXT records
docusign=03debf89-4e94-49a2-96f6-64bc2f7b762dMS=ms6806685336b395c7db7c0cf1fe074de63ae7857av=spf1 a ip4:63.72.180.41 ip4:63.72.180.45 ip4:63.72.180.40 include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com ~allcisco-ci-domain-verification=2b79431c38d25cab9d9a3943489ee86f95a723b256ecda96a2f5112a07bde92ddocusign=19ed66a4-f0a1-4058-a825-7e2a64a875cb
Certificate (current)
Sectigo Public Server Authentication CA EV R36
Expires in 292 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' teams.microsoft.com *.teams.microsoft.com *.skype.com *.teams.microsoft.us local.teams.office.com *.powerapps.com *.yammer.com *.officeapps.live.com *.office.com *.stream.azure-test.net *.microsoftstream.com *.dynamics.com *.microsoft.com onedrive.live.com *.onedrive.live.com;