indexo.dev

joinforma.com

.com crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 726 ms crawled 2026-06-01

US · 198.202.211.1 · AS209242 Cloudflare London, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Forma - Flexible Employee Benefits | LSA | FSA | HSA | HRA
Description
Forma’s flexible benefits software helps companies offer competitive benefits packages while reducing costs. Select from LSA, FSA, HSA, and HRA.
Language
en
Canonical
https://www.joinforma.com

Open Graph

title
Forma - Flexible Employee Benefits | LSA | FSA | HSA | HRA
description
Forma’s flexible benefits software helps companies offer competitive benefits packages while reducing costs. Select from LSA, FSA, HSA, and HRA.

Technology

CDN
Cloudflare
jQuery
3.6.0
Analytics
  • Google Tag Manager
Third-party hosts loaded (10)
  • cdn.prod.website-files.com×111
  • cdn.jsdelivr.net×5
  • www.googletagmanager.com×3
  • assets.apollo.io×1
  • cdnjs.cloudflare.com×1
  • code.jquery.com×1
  • d3e54v103j8qbb.cloudfront.net×1
  • js.hs-scripts.com×1
  • js.hsforms.net×1
  • px.ads.linkedin.com×1

Social

Registration

Registrar
Amazon Registrar, Inc.
Created
2022-01-19
Expires
2033-01-19 2423 days left
Updated
2026-05-16
Name servers
  • ns-cloud-c1.googledomains.com
  • ns-cloud-c2.googledomains.com
  • ns-cloud-c3.googledomains.com
  • ns-cloud-c4.googledomains.com

DNS records live

NS
  • ns-cloud-c1.googledomains.com
  • ns-cloud-c2.googledomains.com
  • ns-cloud-c3.googledomains.com
  • ns-cloud-c4.googledomains.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 6 TXT records
  • hubspot-domain-verification=Njc1ZDk4ODEtOWExNy00YzYzLWIwZDQtNmU4NDQ3ZjEzYjBh
  • _sfdv.joinforma.com=00D6g00000809Tc=1TBPL00000000RR
  • work-os-domain-verification-zdsch1=UBA4i0ToVymcBkyvQVxrLfItV
  • loom-site-verification=0855df429d1e4fcd83f13c0654a349a6
  • whimsical=8a3a9aee3a0ea09fe116bee35f2ad79266fe7b1b
  • launchdarkly-domain-verification=9530e46c-a3de-4900-8072-803e5ab4628b
Verified for
  • Anthropic
  • Apple
  • Atlassian
  • Canva
  • DocuSign
  • Figma
  • Google
  • Linear
  • Microsoft 365
  • MongoDB
  • Slack
  • Stripe
  • Twilio
  • Zoom

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:mail.zendesk.com include:spf3.alegeus.com include:20992180.spf05.hubspotemail.net include:spf.braintreegateway.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; adkim=s; aspf=s; rua=mailto:p5apm6cnbw@rua.powerdmarc.com; ruf=mailto:p5apm6cnbw@ruf.powerdmarc.com; pct=100;
policy: reject (enforced)
DKIM
  • google: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXI4jGdjPq7W4bSN54TxHwiH5x1FD7uGj8m9pmZaWAJ2Sk8vVAZhtcn4iDtb6/U9EEYOktDXzKgsx4WV…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvM9mPVSFL1kN78AuFniYajk4GZHhLyM6ERJrOud8As1Ck5nYTX/gtC2cfMOELgh53aC7JwURjWSPLkMxZh…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDlNoLmDiN92zjNJxyVfzbAHVYprLhhy/jRYxGsoTn3zol2XnAf7GN6LKZFwo+7YD2Rhp4SY5qYmKjnT1qPXAKLu9…
selectors probed

Certificate (current)

WE1
from 2026-05-18 to 2026-08-16
Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.joinforma.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
findings
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy
frame-ancestors 'self'
strict-transport-security
max-age=31536000

Links to (3)

Linked from (1)