indexo.dev

landesa.org

.org crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 1115 ms crawled 2026-06-01

US · 13.33.235.41 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Home - Landesa
Language
en-US
Generator
WP Rocket 3.21.1
Canonical
https://www.landesa.org/
Translations
  • en
Feeds

Open Graph

url
https://www.landesa.org/
title
Home
locale
en_US
site name
Landesa
description
Harnessing the transformative power of land rights. Building equity and prosperity for people and planet.See Our ImpactWhere Women Take Root, Futures Grow Women make…

Technology

CDN
Amazon CloudFront
Server
Pagely-ARES
CMS
WordPress
jQuery
3.7.1
Analytics
  • Google Tag Manager
Ads
  • Meta Pixel
Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • cdn.amcharts.com×6
  • www.googletagmanager.com×3
  • www.google.com×2
  • connect.facebook.net×1
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • www.facebook.com×1
  • www.gstatic.com×1

Social

Contact

Phone

DNS records live

NS
  • ns-1017.awsdns-63.net
  • ns-1047.awsdns-02.org
  • ns-1923.awsdns-48.co.uk
  • ns-444.awsdns-55.com
MX
  • 0 landesa-org.mail.protection.outlook.com
Verified for
  • Canva

Email authentication weak

SPF
not published
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyO1h2Y+I9qf44sFz2JQLKpSx86WZh56aOtEAwMhPkEHUSm/DVy/Ry9tozs7nZwn52KphM88SLd1ohx5CkgT…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2025-09-24 to 2026-10-24
Expires in 141 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.landesa.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self)
x-content-type-options
nosniff
content-security-policy
script-src 'self' data: 'unsafe-inline' 'unsafe-eval' blob: https://js.hsforms.net https://js.hs-analytics.net https://js.hs-scripts.com https://*.google.com/ https://www.googletagmanager.com https://googleads.g.doubleclick.net https://connect.facebook.net https://static.ads-twitter.com https://platform.twitter.com https://www.google-analytics.com https://meetings.hubspot.com https://www.google.com https://www.gstatic.com https://www.googleadservices.com https://lxt.bamboohr.com https://www.googleoptimize.com *.adroll.com https://snap.licdn.com https://ws.zoominfo.com https://www.clarity.ms https://cdn.getkoala.com https://js.hsleadflows.net https://js.hsadspixel.net https://js.hs-banner.com *.hotjar.com https://www.youtube.com https://classy.org https://*.landesa.org https://*.classy.org https://*.amcharts.com https://*.pardot.com https://cdn3.devexpress.com https://*.pcdn.co https://*.sites.pressdns.com https://yoast.com https://*.google-analytics.com https://*.typekit.com https://*.
strict-transport-security
max-age=31536000

Links to (5)

Linked from (3)