squarepegfoundation.org

.org crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 2685 ms crawled 2026-06-02

US · 107.180.230.83 · AS26347 New Dream Network, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Square Peg Foundation

Language

en-US

Generator

WordPress 7.0

Feeds

Open Graph

url: https://www.squarepegfoundation.org/
title: Square Peg Foundation
locale: en_US
site name: Square Peg Foundation

Technology

Server: nginx
CMS: WordPress 7.0

Third-party hosts loaded (14)

i0.wp.com×21
c0.wp.com×12
v0.wordpress.com×6
videopress.com×6
stats.wp.com×3
downloads.mightycause.com×2
s0.wp.com×2
gmpg.org×1
greatnonprofits.org×1
jetpack.wordpress.com×1
public-api.wordpress.com×1
secure.gravatar.com×1
widgets.wp.com×1
wp.me×1

Social

DNS records live

NS

ns1.hover.com
ns2.hover.com

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Google

Email authentication partial

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

YR1

from 2026-06-01 to 2026-08-30

Expires in 87 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.squarepegfoundation.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:;
strict-transport-security: max-age=31536000;

Links to (24)

Linked from (1)

dunlaps.net×1