indexo.dev

mcseagles.org

.org crawl

First seen 2026-04-27 · Last seen 2026-05-17 · ok HTTP/1.1 200 1165 ms crawled 2026-05-05

US · 75.2.0.5 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
MCS Eagles
Description
The MCS Eagles App and Website, operated by the Middletown Christian Schools Athletic Department, provide scores, schedules, news, and rosters for all Eagles teams. At Middletown Christian, athletics is about more than competition — it’s about family, character, and growing in Christ. We offer 16 varsity sports plus JV, junior high, and elementary programs, giving athletes of all ages a place to grow and serve. We proudly compete in the MBC, OHSAA, and NCSAA. Our athletes pursue excellence in a Christ-centered environment, living out The Eagle Standard through prayer, hard work, discipline, and support for one another. We Defend The Nest with passion and purpose, honoring God in every moment. Go Eagles! Christian Vanover & Jarred Jermacans Middletown Christian Athletics
Language
en

Technology

CMS
Next.js

Third-party hosts loaded (1)

  • static.v2.ballfrog.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2013-07-15
Expires
2027-07-15 420 days left
Updated
2025-11-20
Name servers
  • ns67.domaincontrol.com
  • ns68.domaincontrol.com

DNS records live

NS
  • ns67.domaincontrol.com
  • ns68.domaincontrol.com

Certificate (current)

Amazon RSA 2048 M01
from 2025-11-17 to 2026-12-17
Expires in 210 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://mcseagles.org/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'nonce-ZDYyOGQ3NjYtMWI5MS00MmIwLTk0MzMtODY2NzcyZDA1Yzhl' https://platform.twitter.com https://www.instagram.com https://*.cdninstagram.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.cdninstagram.com; img-src 'self' https://api.v2.ballfrog.com/ https://static.v2.ballfrog.com https://*.cdninstagram.com https://pbs.twimg.com; font-src 'self' data: https://fonts.gstatic.com; media-src 'self' https://api.v2.ballfrog.com/ https://static.v2.ballfrog.com https://*.cdninstagram.com; connect-src 'self' https://api.v2.ballfrog.com/ https://www.instagram.com https://syndication.twitter.com; frame-src https://platform.twitter.com https://www.instagram.com https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://www.canva.com; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'self' https://risevision.com https://*.risevision.com; worker-src 'self'; upgrade-insecure-requests; re
strict-transport-security
max-age=31536000; includeSubDomains

Links to (1)

Linked from (1)