naifa.org

HTML metadata

Technology

CDN

Cloudflare

jQuery

1.7.1 known XSS (<3.5)

Analytics

• Google Tag Manager

Fonts

• Font Awesome
• Google Fonts

Social

• facebook
• twitter
• instagram
• linkedin
• youtube

Contact

Email

• info@naifa.org

Phone

• 877-866-2432

DNS records live

NS

• ns11.domaincontrol.com
• ns12.domaincontrol.com

MX

• 0 naifa-org.mail.protection.outlook.com

TXT

Show 5 TXT records

• QvBGhTVyle53yRLDTDgjMCn7jBg4RNypr3ADE7QZW1Q\
• intacct-esk=B132621441DBEC4DE0539A220D0A648C
• v=DMARC1; p=quarantine; rua=mailto:swelgf74lf@rua.powerdmarc.com; ruf=mailto:swelgf74lf@ruf.powerdmarc.com; fo=1;
• box-domain-verification=d0394d804deaf8023e1cd26447075594e8897a189894f4ce3556e3f9bf567bb7
• hubspot-developer-verification=ZTUyYmIyMzgtNjE5My00MjAxLWJjNmUtNmEwMjIwYjg4MDRh

Verified for

• Apple
• Google
• Microsoft 365

Email authentication strong

SPF

v=spf1 include:47mr4ap2h0.powerspf.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; sp=none; rua=mailto:swelgf74lf@rua.powerdmarc.com; ruf=mailto:swelgf74lf@ruf.powerdmarc.com; pct=100; fo=1;

policy: quarantine · sp=none

DKIM

Show 4 DKIM selectors

• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5bVCIurTb9o0kPjXrDpsIIbK71RMdz89IgF2qvtunsdzHlxn+PHB7IAyVNFkb1K81aX1XS/qS0pFM6CbKWb…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+mtqT8qBOTz0CdpxGWBNEoeIHJ6lkXHjqH72+3F4kBx5vsAVEJRlpTBuTzNT6y0XimwyPDsWqyNSYX78+…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqEAJpbyhwnIb89K1NZ+LHs+U4fCt45QN9Krv5kIHRNJSAWaqW72Yy1dYNon/ddG1xZVmBXLUa3auViRaXOFww1j…
• smtpapi: k=rsa\; t=s\; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW…

selectors probed

HTTP security headers

Header hygiene 75/100 Checked live page: https://belong.naifa.org

present

• strict-transport-security
• content-security-policy
• referrer-policy

findings

• missing frame protection
• missing content type protection
• missing Permissions Policy

Links to (13)

• facebook.com×1
• gotv4financialsecurity.org×1
• hubspot.com×1
• instagram.com×1
• lifehappens.org×1
• linkedin.com×1
• mykajabi.com×1
• naifastore.com×1
• protectorsvegas.com×1
• soundcloud.com×1
• twitter.com×1
• vocusgr.com×1
• youtube.com×1

Linked from (3)

• laportefinancial.com×1
• simplepathretirement.com×1
• pfsinsurance.com×1