indexo.dev

manhattan.org

.org crawl

First seen 2026-05-30 · Last seen 2026-06-01 · ok HTTP/1.1 200 1037 ms crawled 2026-05-31

US · 208.90.190.33 · AS36489 IP Pathways, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Manhattan Area Chamber of Commerce | Official Website
Language
en

Technology

Server
Microsoft-IIS
jQuery
3.7.1
Stack
ASP.NET

Third-party hosts loaded (2)

  • app-script.monsido.com×1
  • docaccess.com×1

Contact

Email
Phone

Registration

Registrar
Amazon Registrar, Inc.
Created
1995-07-08
Expires
2026-07-07 34 days left
Updated
2026-05-05
Name servers
  • dns3.civicplus.com
  • dns4.civicplus.com

DNS records live

NS
  • dns3.civicplus.com
  • dns4.civicplus.com
MX
  • 0 manhattan-org.mail.protection.outlook.com
TXT
Show 4 TXT records
  • 698cmbm5ek353of1jhoemccbgt
  • edofem2nbm2bfcrj4i4hhm05mo
  • 27vi0qag8l94n5bqbrung2pjve
  • 40nsv0dinghvt7bn9rsd3n5eb2

Email authentication partial

SPF
v=spf1 ip4:34.174.145.124 ip4:3.214.204.181 include:clientemailspf.growthzoneapp.com include:spf.protection.outlook.com include:sendgrid.net -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none
policy: none (monitoring only) · sp=none
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQBACPwGSsPcruOkzwSh07QjRwP7Ytjguj775GZcctmwVllV2+LwJnd6xewfjDgQLyCbqkKyDerZgXDVYhgr…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlvS4qopn0kMa9KlA4YsZpgr6pH6A6yEvKLUMWoIpYYfKZcNxMYlEck8vkTDnULDOsTBNkUJ2+js5kaMNH…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC++AXuzNODN3BMk8qLDxsAQsbOTmAvyiKKCUhFSnmNRxYfSuGqeFvFmLz+EJIic9KgKz/Alc/5rMIT59XRoKXH95…
selectors probed

Certificate (current)

R12
from 2026-05-17 to 2026-08-15
Expires in 74 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://manhattan.org/

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (3)

Linked from (3)