indexo.dev

philadelphiazoo.org

.org crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 529 ms crawled 2026-06-01

US · 141.193.213.21 · AS209242 Cloudflare London, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Discover America's First Zoo – Philadelphia Zoo
Description
Find wild amounts of fun at Philadelphia Zoo, an urban oasis home to more than 1,900 rare and endangered species from around the world!
Language
en-US
Generator
WP Rocket 3.20.0.3
Canonical
https://www.philadelphiazoo.org/

Open Graph

url
https://www.philadelphiazoo.org/
title
Visit Philadelphia Zoo, An Oasis of Adventure & Fun
locale
en_US
site name
Philadelphia Zoo
description
Find wild amounts of fun at Philadelphia Zoo, an urban oasis home to more than 1,900 rare and endangered species from around the world!

Technology

CDN
Cloudflare
CMS
WordPress
jQuery
3.6.1
Analytics
  • Google Tag Manager
Ads
  • Meta Pixel
Third-party hosts loaded (10)
  • imagedelivery.net×11
  • cdnjs.cloudflare.com×2
  • cdn.jsdelivr.net×1
  • connect.facebook.net×1
  • cse.google.com×1
  • sdk.classy.org×1
  • static.zdassets.com×1
  • unpkg.com×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • christina.ns.cloudflare.com
  • jack.ns.cloudflare.com
MX
  • 0 d245444a.ess.barracudanetworks.com
  • 10 d245444b.ess.barracudanetworks.com
TXT
  • e2ma-verification=e9mgb
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 ip4:40.92.0.0/15 ip4:51.4.72.0/24 ip4:51.5.72.0/24 ip4:51.5.80.0/27 ip4:51.4.80.0/27 ip4:50.235.5.206 ip4:69.72.32.0/20 ip4:66.102.0.0/20 ip4:74.125.0.0/16 ip4:35.191.0.0/16 ip4:139.60.0.0/24 ip4:139.60.1.0/24 ip4:139.60.2.0/24 ip4:139.60.3.0/24 ip4:40.107.0.0/16 ip4:52.100.0.0/14 ip4:104.47.0.0/17 ip4:185.12.80.0/22 ip4:216.198.0.0/18 ip4:166.78.68.0/22 ip4:66.249.80.0/20 ip4:72.14.192.0/18 include:_spf0000000.philadelphiazoo.org -all
strict (-all)
DMARC
v=DMARC1; p=quarantine
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAFZIaFvQReLzew8wl95s/Nuyk/khWbVFbesUne72/FKys0TD5lE/vvhYKe+XOUTCE2q+pPWMk2iJG…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6bltVHCQZN+r2UY7bLGKhUjuC0I3075zHDHIYxiVEQrGHWdjuaQnrf+aH1h6S9N3uanhIyezdsftvBl61…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIC0l78gyB2+5P+ZLAEcfT0uL4HmeaJ1w83N7oTjSvaFBfxMWJRh2F70MscaOmyk4G8PfBr6Ka9f6Bn7+v…
selectors probed

Certificate (current)

WE1
from 2026-04-17 to 2026-07-16
Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.philadelphiazoo.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self "https://philadelphiazoo.org") microphone=() camera=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: sdk.classy.org *.philadelphiazoo.org challenges.cloudflare.com googleads.g.doubleclick.net google-analytics.com www.googletagmanager.com www.google.com www.gstatic.com cse.google.com kit.fontawesome.com player.vimeo.com www.youtube.com cdnjs.cloudflare.com cdn.jsdelivr.net unpkg.com connect.facebook.net sdk.classy.org static.zdassets.com widget-mediator.zopim.com snap.licdn.com js.adsrvr.org api.smooch.io sc-static.net bat.bing.net analytics.tiktok.com bat.bing.com tr.snapchat.com; style-src 'self' 'unsafe-inline' *.philadelphiazoo.org cdnjs.cloudflare.com unpkg.com cdn.jsdelivr.net www.google.com www.gstatic.com; img-src 'self' data: secure.gravatar.com *.philadelphiazoo.org imagedelivery.net www.facebook.com px.ads.linkedin.com px4.ads.linkedin.com www.linkedin.com ad.ipredictive.com www.googletagmanager.com www.google.com ad.doubleclick.net googleads.g.doubleclick.net v2assets.zopim.io static.zdass
strict-transport-security
max-age=31536000

Links to (7)

Linked from (2)