hunterseven.org

.org crawl

First seen 2026-04-20 · Last seen 2026-05-17 · ok HTTP/1.1 200 3287 ms crawled 2026-05-14

US · 216.239.36.21 · AS15169 Google LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: HunterSeven Foundation
Description: HunterSeven Foundation researches military exposures, educates veterans and healthcare providers, and provides life-saving support to those made ill as a result of their service.
Language: en

Open Graph

title: HunterSeven Foundation
locale: en_US
site name: HunterSeven Foundation
description: Protecting those who protected us through research, education, and advocacy for veterans affected by military exposures.

Technology

Server: Google
CMS: Next.js

Social

Contact

Phone

Address

306 Thayer Street #2694Providence, RI 02906(602) 857-9009info@hunterseven.org

Registration

Registrar

GoDaddy.com, LLC

Created

2019-06-07

Expires

2028-06-07 749 days left

Updated

2025-01-13

Name servers

ns41.domaincontrol.com
ns42.domaincontrol.com

DNS records live

NS

ns41.domaincontrol.com
ns42.domaincontrol.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

mailerlite-domain-verification=cdb76e917d41a2068073b5e0efbef66ebc00b3bc
google-site-verification=x_OOOhuQzBaRfkXbyEmPfXTqulBf2pQFbCrqpSE8_CQ
google-site-verification=4QhAjdeOmmF_jMd4LAGPjwNXsyCMv6b2HleCS6udQoU
linkedin-site-verification=8d4d096d-23b0-4828-877e-525dcb960042

Email authentication partial

SPF: v=spf1 include:dc-db9e4b7a04._spfm.hunterseven.org ~all
softfail (~all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

WR3

from 2026-05-08 to 2026-08-06

Expires in 78 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://hunterseven.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https: blob:; font-src 'self' data:; connect-src 'self' https://*.supabase.co wss://*.supabase.co; frame-ancestors 'self'; base-uri 'self'; form-action 'self'
strict-transport-security: max-age=63072000; includeSubDomains; preload