nefinc.org

.org crawl

First seen 2026-04-22 · Last seen 2026-05-12 · ok HTTP/1.1 200 2749 ms crawled 2026-05-16

US · 52.162.107.40 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title: National Equity Fund
Description: National Equity Fund creates and delivers innovative, collaborative financial solutions to expand the creation and preservation of affordable housing. NEF is an industry leader in combining Opportunity Zone credits with LIHTC.
Canonical: https://www.nationalequityfund.org/

Technology

Server: Microsoft-IIS

Analytics

Google Tag Manager

Third-party hosts loaded (2)

www.googletagmanager.com×1
www.nationalequityfund.org×1

Social

Contact

Phone

312-360-0400

Registration

Registrar

GoDaddy.com, LLC

Created

1998-01-12

Expires

2031-01-11 1697 days left

Updated

2025-04-22

Name servers

ns55.domaincontrol.com
ns56.domaincontrol.com

DNS records live

NS

ns55.domaincontrol.com
ns56.domaincontrol.com

MX

0 nefinc-org.mail.protection.outlook.com

TXT

Show 5 TXT records

docusign=c021b1db-7b23-468d-9116-6cb96b524847
ZOOM_verify_iYXiTcm6Tr6-Ob5vU1x_NA
MS=ms26679954
box-domain-verification=f573b6c2abef53b9eaa18030bd94da9da3eb4052126970048ffbc3525db013e2
anthropic-domain-verification-27x0pv=m9uQ7la9PoBQeUmHGOZzrq7Po

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:spf.US.exclaimer.net -all

strict (-all)

DMARC

v=DMARC1; p=quarantine

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygjzdcqIDharSqY/+7w9Jy8Z83QzpB7iew2iGjffahH09gwzZGiCP/IBaOGtcFJfv4arXcXeqICI8U…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzvi1AkYoAOHV5LJD0yfp0BSvQYE5NBp24dH+MVz5FKqREsre4XaSzK9Ptbw3PYBNtz8j9e64+siePk…

selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-02-07 to 2026-08-08

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://nefinc.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src data: https: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains

Links to (1)

linkedin.com×2

Linked from (1)

lisc.org×2