nycsca.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-08 · ok HTTP/1.1 200 1376 ms crawled 2026-05-08

US · 75.2.45.75 · AS16509 Amazon.com, Inc.

Reputation 64/100 wrong cert weak security headers dmarc monitor-only

Classifying

HTML metadata

Title: NYCSCA Official Website > Home
Description: New York City School Construction Authority's official website
Language: en-US

Technology

Fonts

Google Fonts

Third-party hosts loaded (4)

dnnapi.com×1
dnnhh5cc1.blob.core.windows.net×1
fonts.googleapis.com×1
translate.google.com×1

Social

Registration

Registrar

Network Solutions, LLC

Created

1997-02-13

Expires

2031-02-14 1732 days left

Updated

2025-12-21

Name servers

ns1-01.azure-dns.com
ns2-01.azure-dns.net

DNS records live

NS

ns1-01.azure-dns.com
ns2-01.azure-dns.net
ns3-01.azure-dns.org
ns4-01.azure-dns.info

MX

10 primary.us.email.fireeyecloud.com
20 alt1.us.email.fireeyecloud.com
30 alt2.us.email.fireeyecloud.com
40 alt3.us.email.fireeyecloud.com
60 nycsca-org.mail.protection.outlook.com

TXT

Show 11 TXT records

MS=ms51755309
dnnhh5cc1.evoqondemand.com
MS=ms47853855
apple-domain-verification=D6pMT4WTtjCKUMu3
google-site-verification=fOuHZJd1uzpdDITNRC-4WO-pjZJDIaUCpgoCithpul0
atlassian-domain-verification=FnNAz181gtFm8DWp82j84Zmi0Y6eA6BjuMeON5jAhehNX07PDAIJw/AkdpUcrK40
atlassian-sending-domain-verification=6114f301-18a0-4f9a-a9d9-fa51e28fa018
miro-verification=c5daed37e013304d4d98ddbf78321340f77ca053
autodesk-domain-verification=LtVbjwez8nOX5vBZlkGa
00D37000000I0w9=1TBRd000000009h
Qp8FipCrYqjmybPBc/S1sHugCkFytqk3tReYE0Nv/1MhMKgj9U4vmFdCG0FPuZD12h6krio6E6/xKEJMBwm4pw==

Email authentication partial

SPF

v=spf1 ip4:12.145.121.100 ip4:12.145.121.101 ip4:65.196.51.70 ip4:65.196.51.71 ip4:35.80.141.6 ip4:44.229.121.55 ip4:12.145.120.1 ip4:204.148.103.190 ip4:129.80.108.245 ip4:148.59.100.16 ip4:148.59.100.28 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; fo=1; ri=3600; rua=mailto:nyc-cyber@rua.agari.com,mailto:dmarc_agg@cyber.nyc.gov; ruf=mailto:nyc-cyber@ruf.agari.com,mailto:dmarc_fgg@cyber.nyc.gov

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDaDbU3X/sLFOI38RApVzyUBFxBWM0mmbajCkhYfGKkAClrvGfkYx9WGqyTXbOKLfBf3M/gmn3ndOgul5y8JW…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3MnUlYKQESawGHyzdAUvLd+2wvjtNyZix3Ihs4NtG8vEAQ0DfS6nL30YPWihpyxNF1iBRhs9XGPjOdfWn…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQWIpajxswMAHj962eZtLPyE52C5+wdPP4Tiq3GTceWb/VD5DSeX8eXjDIbEC8mzVx/fNOxxEmoW7dwvFqD7srxa…

selectors probed

Certificate (current) wrong cert

Entrust OV TLS Issuing RSA CA 2

from 2026-01-27 to 2027-02-28

Expires in 285 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked over plain HTTP: http://nycsca.org/

present

x-frame-options

findings

checked over plain HTTP
missing Content Security Policy
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN

Links to (4)

Linked from (1)

newcastlemetal.com×2