indexo.dev

myschoolfund.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-06 · ok HTTP/1.1 200 463 ms crawled 2026-05-08

IE · 52.51.132.106 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Welcome to My School Fund.
Language
en

Technology

Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • js.datadome.co×1
  • www.googletagmanager.com×1

Registration

Registrar
GoDaddy.com, LLC
Created
2020-03-13
Expires
2027-03-13 297 days left
Updated
2026-04-27
Name servers
  • ns73.domaincontrol.com
  • ns74.domaincontrol.com

DNS records live

NS
  • ns73.domaincontrol.com
  • ns74.domaincontrol.com
MX
  • 0 smtp.secureserver.net
  • 10 mailstore1.secureserver.net
TXT
  • google-site-verification=lJny-dHJ_w2dy3SyhD1t-Znk15ksbLS4vY-ApcCa2DM
  • D6370424

Email authentication weak

SPF
v=spf1 include:service-now.com ip4:185.207.111.158 ip4:185.207.111.159 ~all
softfail (~all)
DMARC
not published
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Tb1/11ccG4mvVAUbUnhD5PUeoziOYwxWYyPEvJKdG+Wo7RZn+HqOEl/filhGRvnvOo3lEOt7o/VNK+Yhq…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvf95YzOI4MzNzZBHcX3iAHg/+BUvvQUmBLxX6nNXV30yZ5E4bX/MOS86KYUKzIKepZgFoDPk4YxBmSYsL…
selectors probed

Certificate (current)

R12
from 2026-03-17 to 2026-06-15
Expires in 27 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.myschoolfund.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
geolocation=(), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
connect-src 'self' https://stats.g.doubleclick.net/ https://cdn.ckeditor.com https://region1.analytics.google.com https://api-js.datadome.co http://localhost:13271 https://jsonip.com/ https://resources.fidel.uk https://www.myschoolfund.org; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdnjs.cloudflare.com/ajax/libs/codemirror/5.48.4/mode/css/css.js https://cdnjs.cloudflare.com/ajax/libs/codemirror/5.48.4/mode/javascript/javascript.js https://cdnjs.cloudflare.com/ajax/libs/codemirror/5.48.4/mode/xml/xml.js https://cdnjs.cloudflare.com/ajax/libs/codemirror/5.48.4/codemirror.js https://*.captcha-delivery.com https://cdn.ckeditor.com https://*.datadome.co https://ht.blackhawknetwork.com https://www.googletagmanager.com http://localhost:13271 https://resources.fidel.uk https://www.myschoolfund.org; img-src 'self' https://i.ytimg.com/ https://cdn.ckeditor.com http://www.w3.org https://www.google.co.uk https://ht.blackhawknetwork.com http://localhost:13271 https://resources.fidel.u
strict-transport-security
max-age=31536000; includeSubDomains; preload

Linked from (1)