indexo.dev

nfp.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-17 · ok HTTP/1.1 200 1990 ms crawled 2026-05-06

US · 104.19.208.28 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Insurance Broker for Work, Home and Life | NFP
Description
Discover tailored insurance and consulting solutions that fit your life and business. Contact us today for personalized guidance and expert support.
Language
en
Canonical
https://www.nfp.com/

Open Graph

url
https://www.nfp.com/
title
Insurance Broker for Work, Home and Life | NFP
site name
NFP
description
Discover tailored insurance and consulting solutions that fit your life and business. Contact us today for personalized guidance and expert support.

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • fonts.googleapis.com×3
  • cdn.jsdelivr.net×1
  • code.jquery.com×1
  • fonts.gstatic.com×1
  • kit.fontawesome.com×1
  • maps.googleapis.com×1
  • use.typekit.net×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy Corporate Domains, LLC
Created
1995-07-05
Expires
2027-11-02 531 days left
Updated
2023-10-19
Name servers
  • pdns75.ultradns.biz
  • pdns75.ultradns.com
  • pdns75.ultradns.net
  • pdns75.ultradns.org

DNS records live

NS
  • pdns75.ultradns.biz
  • pdns75.ultradns.com
  • pdns75.ultradns.net
  • pdns75.ultradns.org
MX
  • 0 nfp-com.mail.protection.outlook.com
TXT
Show 34 TXT records
  • PTS9A0/mTy+kAwZfd61YzmAJ9QZpC6uGGFUlwIlLeUZT/99RdAfIMugZwTcTHLrCf6Xv4ExTSs4FI6WHVTdDfw==
  • zywave-domain-verification=GFVFTZqfsTRJGfNZImNbaxJBbB26m7smH7mR27vfLws=
  • nfpconnectmfa-dev.azurewebsites.net
  • _jlkl12rn04qh70onnuokx8db4crsmz1
  • sending_domain1069492=52cce49238075a15c6664a0dd371d3c2586733a72a1ae48e995fc8de8fc92b73
  • 0ed1fe018a5967b0c8b03e40d4988648b404aa6810
  • apple-domain-verification=93cXDQOU3f6cIcgI
  • cpadsapi-dev.azurewebsites.net
  • google-site-verification=p3wEqfhkHzxT5w25Yl16sW2w0R6QirPpVu5VxjVBjmA
  • pardot_236532_*=eb1dedd48006fcc038bef5403aeba443589e727a36fd49d681f4b497132ea13f
  • sending_domain1046233=3b1c7e0b598f89bbb239ee75da045e9c9489fdff6e767ead3b8b34804d0b03b5
  • didonationmatching.azurewebsites.net
  • docusign=6e5b38b7-c045-45ad-8118-ea9350ccc25f
  • google-site-verification=fgL2TzIWGDvqusPaeJVyzfqHpGr8AGSWzWe4i8w_PgQ
  • atlassian-domain-verification=4B2A1eOljaMNfiq1qW4Tx9HaqNAF1u4H5dr39luRvEgNiG7L2ppWq4CMmGuDpBRX
  • google-site-verification=ew5omD-h47QrmKvMHqPMN1-45rMZafghccIFx-dTBUQ
  • MS=88CDFEF4D13E9E5B32AE50FC79CD360808044390
  • wiz-domain-verification=345f74be5f353b3f2cd58de623d5a9922b3988bb86327a3f92b133914a22a9b1
  • hubspot-32HdseUjhTR3748Lk
  • workplace-domain-verification=rvNNgFPgC2tdA1hH9xr9e5o6oc8m5O
  • clinix-prod.azurewebsites.net
  • gNFsgK52vGJLq8yren7rSI51ISpu/SL3xUqgCcpn3k5onoPZSEPvdUqBol61j8aSf+SrHAMAfKN7S88YfkwePg==
  • pardot1069492=c8362f274b5d988cfc41c693525e8020803e39f34ce8a6809f0f00a4fe39d00d
  • _em1ciesocqnlrej9bmry9kjvhr6n3an
  • remarkable-domain-verification=37179851-fe06-4843-8f89-3b32c83b61a6
  • d365mktkey=2vap9r22ifh57bbszto9utr1i
  • clinix-qa.azurewebsites.net
  • 0ed1fe018a1135ede5561240f599ee943179093535
  • atlassian-domain-verification=ppg3B+Un4s8eD4go+1Jo6IE2Bg9S+oy55UfTRFcjZ/ScOb6yzinryCuoYbm4ftnK
  • k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGoQCNwAQdJBy23MrShs1EuHqK/dtDC33QrTqgWd9CJmtM3CK2ZiTYugkhcxnkEtGbzg+IJqcDRNkZHyoRezTf6QbinBB2dbyANEuwKI5DVRBFowQOj9zvM3IvxAEboMlb0szUjAoML94HOkKuGuCkdZ1gbVEi3GcVwrIQphal1QIDAQAB;
  • ms-domain-verification=70febb5f-8478-4390-92d9-a6927e2d446c
  • ibmid=ee95b187-3ef2-463c-a34e-b9ac3141c8e1
  • pardot888443=47f83111cf304b7fcc668adb4db706df762b31954e320dd68d4e472f003736c9
  • Oqnib0x4oMjLfUc3Y/oNtioFIgtCLsvltbP/OHFWURqOasEOaab95N5RHB9Z9NWtDPMSxNT+ttIYaMmr8vdZBg==

Email authentication strong

SPF
v=spf1 include:9401749.spf08.hubspotemail.net include:cust-spf.exacttarget.com include:helpscoutemail.com include:_spf.salesforce.com include:firmspf4.nfp.com include:spf.protection.outlook.com include:relay.bswift.com ip4:168.245.55.27/32 ip4:149.72.225.103/32 ip4:165.254.192.13 ip4:198.245.81.0/24 ip4:136.147.176.0/24 ip4:13.111.0.0/16 ip4:136.147.182.0/24 ip4:136.147.135.0/24 ip4:199.122.123.0/24 ip4:209.61.151.0/24 ip4:166.78.68.0/22 ip4:198.61.254.0/23 ip4:192.237.158.0/23 ip4:23.253.182.0/23 ip4:104.130.96.0/28 ip4:146.20.113.0/24 ip4:146.20.191.0/24 ip4:159.135.224.0/20 ip4:69.72.32.0/20 ip4:104.130.122.0/23 ip4:146.20.112.0/26 ip4:161.38.192.0/20 ip4:143.55.224.0/21 ip4:143.55.232.0/22 ip4:159.112.240.0/20 ip4:198.244.48.0/20 ip4:204.220.168.0/21 ip4:204.220.176.0/20 ip4:141.193.32.0/23 ip4:159.135.140.80/29 ip4:159.135.132.128/25 ip4:161.38.204.0/22 ip4:87.253.232.0/21 ip4:185.189.236.0/22 ip4:185.211.120.0/22 ip4:185.250.236.0/22 ip4:143.55.236.0/22 ip4:198.244.60.0/22 ip4:204.220.160.0/21 ip4:165.254.192.13 ip4:149.72.141.98 -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;sp=quarantine;rua=mailto:dmarc@nfp.com;ruf=mailto:dmarc@nfp.com;rf=afrf;pct=100;ri=86400;aspf=r
policy: quarantine · sp=quarantine
DKIM
Show 7 DKIM selectors
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmduIDjVYKBa6SOptGy33mcJYBgaM4gDfZFTvFbYwyF4sQMIGLcTXVSjKt0FDAEJCpHUrqNLcFMKsH+…
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/sYE7ElZee6+KfG5DdRGg2R/BGRW3QXkA34rlImZO52v06EbSU2iEOeLw4+s9+j846pmFZQra9LbIN…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogVEc4A3tyYqR4pPd2V5RK753irsmL1cLoYtQbdvhLxX5xuSWve7ePM2faZmQsbdrUnQfpB/rWfFdp…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3FA/iLMVCV3pzr1HLkrrSCLIYGZoYtldcJoWv2nsFB7epKX5QNpGql8ySAv/avnvGA3le5Fy0waFhjIKJMK+ajwpBEI9…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyC98ArxqfAzESNtIugjgVyfXoil0MenuPVyUjN6hxyblXBhClDsoTvtvyOqv11OVKQFoZ+eNrLtCiR6j06…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+9Pvo+Vup+h6KJYCND+VKxnn2M+N7I2vnp+zbAMrRhoBrcae22MkSQxe0Kwrsp6pnuUkmW9B7n/TNGmf+…
selectors probed

Certificate (current)

WE1
from 2026-04-06 to 2026-07-05
Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.nfp.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
SameOrigin
permissions-policy
accelerometer=(), bluetooth=(), camera=(), gyroscope=(), magnetometer=(), microphone=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' data: blob: www.googleadservices.com https: wss: fonts.googleapis.com fonts.gstatic.com webfiles2.nfp.com www.google.com www.gstatic.com www.google-analytics.com www.googletagmanager.com maps.googleapis.com bat.bing.com *.cookie-script.com cookie-script.com cdn.jsdelivr.net code.jquery.com ka-p.fontawesome.com kit.fontawesome.com pi.pardot.com scout-cdn.salesloft.com snap.licdn.com www.soundcloud.com soundcloud.com w.soundcloud.com i.vimeocdn.com i.ytimg.com go.nfp.com player.vimeo.com www.vimeo.com vimeo.com youtube.com www.youtube.com www.youtube-nocookie.com analytics.google.com *.crazyegg.com *.typekit.net js.zi-scripts.com *.pardot.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: www.googleadservices.com *.niceincontact.com home-m32.niceincontact.com ws.zoominfo.com fonts.googleapis.com fonts.gstatic.com webfiles2.nfp.com www.google.com www.gstatic.com www.google-analytics.com www.googletagmanager.com maps.googleapis.com bat.bing.com *.cookie-script.com
strict-transport-security
max-age=2592000

Links to (7)

Linked from (10)