indexo.dev

iac-counselling.org

.org crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 1596 ms crawled 2026-06-02

US · 34.226.77.200 · AS14618 Amazon.com, Inc.

Reputation 67/100 wrong cert no dmarc policy

Classifying

HTML metadata

Title
IAC - Home
Description
International Association for Counselling
Language
en

Technology

CMS
Drupal

Third-party hosts loaded (5)

  • live-sf.wildapricot.org×6
  • sf.wildapricot.org×2
  • www.google.com×2
  • kit-pro.fontawesome.com×1
  • www.iac-irtac.org×1

Social

Contact

Email

DNS records live

NS
  • dns1.registrar-servers.com
  • dns2.registrar-servers.com
MX
  • 10 eforward1.registrar-servers.com
  • 10 eforward2.registrar-servers.com
  • 10 eforward3.registrar-servers.com
  • 15 eforward4.registrar-servers.com
  • 20 eforward5.registrar-servers.com
Verified for
  • Zoho

Email authentication weak

SPF
v=spf1 include:spf.efwd.registrar-servers.com ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current) wrong cert

Amazon RSA 2048 M01
from 2025-09-29 to 2026-10-29
Expires in 148 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.iac-counselling.org/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
report-uri https://csp.uel.wildapricot.com/report; default-src 'self' 'unsafe-inline' 'unsafe-eval' *.appointlet.com *.appointletcdn.com *.aptrinsic.com *.cloudflare.com *.cloudfront.net *.doubleclick.net *.ecomm.events *.ecwid.com *.elev.io *.facebook.com *.facebook.net *.fontawesome.com *.google.com *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.jaris.co *.jaris.com *.linkedin.com *.mcjobboard.net *.mybillsystem.com *.newrelic.com *.nr-data.net *.pagespeed-mod.com *.paypal.com *.termly.io *.twitter.com *.typekit.net *.uservoice.com *.vimeo.com *.wildapricot.com *.youtube.com *.zdassets.com *.zendesk.com *.zopim.com api.preczn.com caas-sf.wildapricot.org https://*.forethought.ai live-sf.wildapricot.org maps.googleapis.com onlinestore-prod-digital-products.s3.amazonaws.com sf.wildapricot.org vimeo.com widget-mediator.zopim.com wss://widget-mediator.zopim.com/; img-src * data: blob:; media-src * blob:; font-src * https://*.apt
strict-transport-security
max-age=31536000

Links to (4)

Linked from (1)