onelfs.org

HTML metadata

Technology

Server

nginx

CMS

WordPress

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• www.googletagmanager.com×5
• cdnjs.cloudflare.com×2
• code.jquery.com×2

Social

• youtube
• facebook
• twitter
• linkedin

Contact

Phone

• 4023427038
• 4024417940

Registration

Registrar

GoDaddy.com, LLC

Created

2022-06-29

Expires

2027-06-29 406 days left

Updated

2024-08-18

Name servers

• ns19.domaincontrol.com
• ns20.domaincontrol.com

DNS records live

NS

• ns19.domaincontrol.com
• ns20.domaincontrol.com

MX

• 0 mx1-us1.ppe-hosted.com
• 20 mx2-us1.ppe-hosted.com

TXT

Show 11 TXT records

• google-site-verification=Vl0U46S0Q_Bwil0F79kV9faseUBybZjVX4ya939tWwI
• duo_sso_verification=RwP3uOcCyeDrwW5PC83UzXj50NXx4GfV8JHX67g6CDQxmNGmSTNQynmSEO4rQyUj
• apple-domain-verification=oRC2rmXQRoSOvzs5kiB4jyAub1wjp8t6dq9cV2pTc4A
• ppe-04da6c0dbb62992323c7ee31f87f49ea45776ef7
• K644gkAti2krzABpfTXZHw==
• knowbe4-site-verification=3225400960b00dd9eec64da90f706c9c
• apple-domain-verification=B5DNjeMCgmunWAKk
• google-site-verification=0SWgTqNCmmgjydta_sJGrZ2oCiJZeZHIVZwC1Myf_ak
• have-i-been-pwned-verification=6f1e1f19684f6d74d8507ea96359b46d
• google-site-verification=87GP4FbGZtWz_qR0QeJi_1RFx4Lq-WW9wY74uvhrsoM
• 1E2D31XVQGDSW27QA50598H0194UORGTIUGTNHXPV

Email authentication partial

SPF

v=spf1 a:mx10.waveinteractive.com a:mx20.waveinteractive.com a:dispatch-us.ppe-hosted.com include:spf.protection.outlook.com include:spf.smtp2go.com include:spf.constantcontact.com include:spf-us.emailsignatures365.com include:outboundmail.blackbaud.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@onelfs.org

policy: none (monitoring only)

DKIM

• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaka+7otrujX40E0W/b9FPtcNz/olbDaO4IkcHevYJR9OEmfuGnSQG+9ZFQaunIgRhJVEX60CHtlLDhKE/…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8jUo6bS9NzG3xJ9B02fUWnt9yP0E09R/NpsQ8RpucsND+W68C/oQRHJuxs841fzf46BdP57yNvydkxMYsY0HP8H…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.onelfs.org/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• echosign.com×2
• facebook.com×2
• linkedin.com×2
• onecause.com×2
• twitter.com×2
• youtube.com×2

Linked from (2)

• cafcon.org×2
• lfsneb.org×1