indexo.dev

ibhs.org

.org crawl

First seen 2026-04-26 · Last seen 2026-05-16 · ok HTTP/1.1 200 817 ms crawled 2026-05-19

US · 34.69.177.56 · AS396982 Google LLC

Reputation 100/100

Classifying

HTML metadata

Title
IBHS.org – Insurance Institute for Business & Home Safety
Language
en-US
Generator
Site Kit by Google 1.179.0
Canonical
https://ibhs.org/
Feeds

Open Graph

url
https://ibhs.org/
title
IBHS.org
locale
en_US
site name
Insurance Institute for Business & Home Safety

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (6)

  • ibhs1.wpenginepowered.com×83
  • fonts.googleapis.com×3
  • www.googletagmanager.com×2
  • gmpg.org×1
  • pro.fontawesome.com×1
  • px.ads.linkedin.com×1

Social

Registration

Registrar
Network Solutions, LLC
Created
1997-07-11
Expires
2028-07-10 781 days left
Updated
2025-05-18
Name servers
  • ns73.worldnic.com
  • ns74.worldnic.com

DNS records live

NS
  • ns73.worldnic.com
  • ns74.worldnic.com
MX
  • 1 ibhs-org.mail.protection.outlook.com

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:spf.dynect.net include:aspmx.pardot.com include:_spf.brightmove.com include:spfa.cpmails.com ip4:97.107.96.162 ip4:173.248.223.66 ip4:71.40.174.162 ip4:97.138.148.170 -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; ruf=mailto:dmarc@ibhs.org; rua=mailto:dmarc@ibhs.org
policy: quarantine
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1FwcSXrSHEzCnerwKT7aJGA6nTLINl4JUg/UN5TKFMXLicPgSuc470LssNrE1u37NPijvI2Af9eZojuDRVN…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKrS4KQsZebF4JOZmTDCc2TE8jLfQZ8zGGgSbaqh8vU/kIXXaVGpEEdr0edEGvlHMXNfplvej9GnO4FhB8…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZ64ytbhtxXjsK2ZMyf0BcbnNwlZsllMs1jgdbfTMUnU170iBcyP1NVcAi+k3KDUmdGCPor2ctvAlExauT…
selectors probed

Certificate (current)

R12
from 2026-05-18 to 2026-08-16
Expires in 88 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://ibhs.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
autoplay=(self "https://www.youtube.com" "https://youtube.com" "https://youtu.be" "https://www.youtu.be" "https://player.vimeo.com"), fullscreen=(self "https://www.youtube.com" "https://youtube.com" "https://player.vimeo.com"), picture-in-picture=(self "https://www.youtube.com" "https://youtube.com" "https://player.vimeo.com"), encrypted-media=(self "https://www.youtube.com" "https://youtube.com" "https://player.vimeo.com"), clipboard-write=(self)
x-content-type-options
nosniff
content-security-policy
default-src * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; img-src * data: blob:; font-src * data: blob:; connect-src * data: blob: ws: wss:; media-src * data: blob:; frame-src * data: blob:; worker-src * data: blob:; child-src * data: blob:; frame-ancestors *; object-src * data: blob:;
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (11)

Linked from (5)