nefe.org

HTML metadata

Title: National Endowment for Financial Education | NEFE
Description: NEFE is the leading nonprofit national foundation dedicated to inspiring empowered financial decision making for individuals, families and communities.
Language: en
Canonical: https://www.nefe.org/default.aspx

Open Graph

url: https://www.nefe.org/default
title: National Endowment for Financial Education | NEFE
description: NEFE is the leading nonprofit national foundation dedicated to inspiring empowered financial decision making for individuals, families and communities.

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (6)

ajax.googleapis.com×1
fonts.googleapis.com×1
js-na2.hs-scripts.com×1
platform-api.sharethis.com×1
public.flourish.studio×1
www.googletagmanager.com×1

Contact

Phone

3037416333

Registration

Registrar

eNom, LLC

Created

1996-01-31

Expires

2028-02-01 622 days left

Updated

2025-07-18

Name servers

edna.ns.cloudflare.com
hans.ns.cloudflare.com

DNS records live

NS

edna.ns.cloudflare.com
hans.ns.cloudflare.com

MX

0 d191513a.ess.barracudanetworks.com
10 d191513b.ess.barracudanetworks.com

TXT

Show 7 TXT records

d365mktkey=cKjLnddKcqXa1iW8GxWpkQkrhB9VAdFsT576aQaWMFwx
e2ma-verification=bf2ab
facebook-domain-verification=yqdph85eureazhn6jw58lmsihvcbql
5bjn3uunb34h4quc4kmhrusq3a
MS=ms69041247
MS=ms95510354
atlassian-domain-verification=NNWt0veJI5CNWuiyyVI0hxcKAuONt8zDnzerYoBqX1bG1fmIRi628ymMgaEM87Lb

Email authentication strong

SPF

v=spf1 ip4:34.234.199.51 ip4:139.60.0.0/22 ip4:65.123.29.215 include:spf.ess.barracudanetworks.com include:e2ma.net include:spf.surveymonkey.com include:spf.protection.outlook.com  include:email.prnewswire.com include:245132034.spf06.hubspotemail.net ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:rua+nefe.org@dmarc.barracudanetworks.com; ruf=mailto:ruf+nefe.org@dmarc.barracudanetworks.com

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCmdRyDxvIU4qo+qpaKOt7+gejdDzwl7eCFdClBDGlGvXVxwsdRy5uaQdFEMTxF8Jzvrymi6GYuNdf8h1vPu1…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WE1

from 2026-04-25 to 2026-07-24

Expires in 65 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.nefe.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP uses wildcard sources

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
permissions-policy: fullscreen=()
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' t.co twitter.com; block-all-mixed-content; worker-src 'self'; object-src 'none'; font-src 'self' https://fonts.gstatic.com https://use.fontawesome.com https://static.isu.pub https://content.powerapps.com https://cloud.taggbox.com https://player.captivate.fm https://d1ixzvs6g7du49.cloudfront.net https://public.flourish.studio https://static.dwcdn.net; child-src 'self' https://platform.twitter.com https://*.svc.dynamics.com https://flo.uri.sh https://public.flourish.studio https://play.libsyn.com https://s7.addthis.com https://www.googletagmanager.com https://www.youtube.com https://*.gettyimages.com https://gdpr-api.sharethis.com https://e.issuu.com https://sidebar.bugherd.com https://*.dynamics.com; frame-src 'self' https://public.tableau.com https://*.youtube.com https://flo.uri.sh https://play.libsyn.com https://*.svc.dynamics.com https://*.azureedge.net https:
strict-transport-security: max-age=31536000; includeSubDomains

Linked from (1)

getsqwire.com×2