openbriefing.org

.org crawl

First seen 2026-04-23 · Last seen 2026-05-14 · ok HTTP/1.1 200 6315 ms crawled 2026-05-17

US · 3.164.68.125 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Home - Open Briefing

Description

Holistic security support and resources to empower people and communities to agitate and advocate without fear of attacks and reprisals.

Language

en-GB

Generator

WordPress 6.9.4

Canonical

https://www.openbriefing.org/

Translations

Open Graph

url: https://www.openbriefing.org/
title: Home
locale: en_GB
site name: Open Briefing
description: Open Briefing builds resistance and resilience among the people and movements challenging unaccountable power. As a mission-driven nonprofit, we join

Technology

CDN: Amazon CloudFront
Server: CloudFront
CMS: WordPress

Cookie consent

Iubenda

Third-party hosts loaded (7)

cdn.getshifter.co×11
cdn.iubenda.com×3
scripts.simpleanalyticscdn.com×3
hits-i.iubenda.com×1
openbriefing.report-uri.com×1
queue.simpleanalyticscdn.com×1
www.iubenda.com×1

Contact

Email

info@openbriefing.org

Phone

247 9028 83

Registration

Registrar

Cloudflare, Inc.

Created

2011-05-26

Expires

2027-05-26 371 days left

Updated

2026-05-01

Name servers

hugh.ns.cloudflare.com
leia.ns.cloudflare.com

DNS records

Email authentication partial

SPF

v=spf1 include:_spf.protonmail.ch mx ~all

softfail (~all)

DMARC

v=DMARC1; p=none; adkim=s; aspf=s; rua=mailto:0b2a7984be394ced945be89377180bdf@dmarc-reports.cloudflare.net,mailto:qggt4fqokn@rua.powerdmarc.com; ruf=mailto:qggt4fqokn@ruf.powerdmarc.com; fo=1;

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44eZclzZaneHV8bQm0E+ivIfZRsT1y+IYtJPpfRH8jg0GFcnZuqgnsMDYqAEHs+G2YsVw2GQMpAdGp…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2025-11-25 to 2026-12-25

Expires in 219 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://openbriefing.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https:; style-src 'self' 'unsafe-inline' https:; font-src 'self' data: https:; frame-src 'self' https:; img-src 'self' data: https:; connect-src 'self' https:; frame-ancestors *;
strict-transport-security: max-age=600
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin

Links to (3)

Linked from (1)

amhp.org.uk×2