indexo.dev

nacfb.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-18 · ok HTTP/1.1 200 1696 ms crawled 2026-05-09

GB · 95.179.192.232 · AS20473 The Constant Company, LLC

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Home - NACFB
Description
The National Association of Commercial Finance Brokers (NACFB) is the UK’s largest independent trade body for commercial finance brokers.
Language
en-GB
Generator
WordPress 6.9.4
Canonical
https://nacfb.org/
Feeds

Open Graph

url
https://nacfb.org/
title
Home - NACFB
locale
en_GB
site name
NACFB
description
The National Association of Commercial Finance Brokers (NACFB) is the UK’s largest independent trade body for commercial finance brokers.

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
  • Google Fonts
Third-party hosts loaded (7)
  • fonts.googleapis.com×4
  • www.google.com×3
  • fonts.gstatic.com×2
  • maps.googleapis.com×2
  • use.typekit.net×2
  • gmpg.org×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
27-29 Station Rd, Cambridge CB1 2FB

Registration

Registrar
CSL Computer Service Langenbach GmbH d/b/a joker.com
Created
1998-10-12
Expires
2026-10-11 145 days left
Updated
2025-09-18
Name servers
  • x.ns.joker.com
  • y.ns.joker.com
  • z.ns.joker.com

DNS records live

NS
  • x.ns.joker.com
  • y.ns.joker.com
  • z.ns.joker.com
TXT
Show 4 TXT records
  • nb9i7vm81h7e0hqv7j7nr404lo
  • _globalsign-domain-verification=lUhWexnF0l_ZpyfdGRFKkkHeOJLhWNCdjrWPxTB0Xa
  • _globalsign-domain-verification=pm5uhnA-1GNxLlk8n5poYoylFGFbFquuQwwrZ6uHJ9
  • _globalsign-domain-verification=2MEiRyaR-nYudCkU9WqgdSFly1zAlwa3tKe1uaow_V

Email authentication no MX

SPF
v=spf1 include:eu._netblocks.mimecast.com include:sendgrid.net ip4:3.163.101.15 ip4:3.163.101.93 ip4:3.163.101.116 ip4:3.163.101.51 ip4:192.124.249.162 ip4:50.63.8.0/22 ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; ruf=mailto:dmarc@cetsat.com
policy: reject (enforced)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YHE79puv5W+hS3Yi2lABLm9XtCDM8Is9Sw3CRsE7YtEAwbFVadiAx1TfSKfWzkdoFR9n8mp042TKTXzY3…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDEzwG8+zSJ4ylugI8TvCgr21B7MXUwuORZvG8LwvXbISxlO578Ie/tQ9wr3xQcoaw7+oqTaeG7FO8oJ04Z27HkLi…
selectors probed

Certificate (current)

E8
from 2026-03-31 to 2026-06-29
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://nacfb.org/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (6)

Linked from (14)