indexo.dev

nhgives.org

.org crawl

First seen 2026-04-27 · Last seen 2026-05-18 · ok HTTP/1.1 200 5537 ms crawled 2026-05-04

US · 198.49.23.144 · AS53831 Squarespace, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
NH Gives
Language
en
Canonical
http://www.nhgives.org/

Open Graph

url
http://www.nhgives.org/
site name
NH Gives

Technology

Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • static-prod.mightycause.com×35
  • imagecdn.mightycause.com×8
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • kit.fontawesome.com×1

Social

Registration

Registrar
Squarespace Domains II LLC
Created
2016-01-06
Expires
2027-01-06 231 days left
Updated
2025-12-27
Name servers
  • ns-cloud-e1.googledomains.com
  • ns-cloud-e3.googledomains.com
  • ns-cloud-e2.googledomains.com
  • ns-cloud-e4.googledomains.com

DNS records live

NS
  • ns-cloud-e1.googledomains.com
  • ns-cloud-e2.googledomains.com
  • ns-cloud-e3.googledomains.com
  • ns-cloud-e4.googledomains.com

Certificate (current)

R13
from 2026-04-17 to 2026-07-16
Expires in 57 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.nhgives.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=*, camera=*, cross-origin-isolated=(self), fullscreen=*, geolocation=*, gyroscope=(), magnetometer=(), microphone=*, clipboard-read=(self), clipboard-write=(self)
x-content-type-options
nosniff
content-security-policy
default-src https: wss: 'self' *.mightycause.com api.autopilothq.com *.braintreegateway.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawesome.com *.formstack.com cdn.jsdelivr.net *.kaptcha.com *.maxmind.com *.plaid.com *.paypal.com *.paypalobjects.com *.segment.com *.segment.io *.stripe.com *.surveymonkey.com *.uploadcare.com ucarecdn.com *.youtube.com *.vimeo.com *.awswaf.com *.flockler.com *.hsforms.net *.thefamousgroup.com *.visualwebsiteoptimizer.com app.vwo.com *.google.com *.google-analytics.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googletagmanager.com *.googleadservices.com d2c6wt5h92c1t2.cloudfront.net da3a5jhrzfmu8.cloudfront.net; script-src https: 'self' 'unsafe-eval' 'unsafe-inline' blob: nimbleswan.io static.tagboard.com *.mightycause.com api.autopilothq.com *.braintreegateway.com cdnjs.cloudflare.com *.doubleclick.net cdn.embedly.com *.facebook.net *.facebook.com *.firebaseio.com *.fontawe
strict-transport-security
max-age=7776000

Links to (3)

Linked from (2)