indexo.dev

thehacc.org

.org crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 685 ms crawled 2026-06-04

US · 104.21.67.14 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
HACC – Helping Citizens of Cook County Find a Home
Language
en-US
Canonical
https://thehacc.org/
Translations
  • en ×2
  • es ×2

Technology

CDN
Cloudflare
CMS
WordPress
jQuery
3.7.1
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×2
  • unpkg.com×2
  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • adi.ns.cloudflare.com
  • tim.ns.cloudflare.com
MX
  • 0 thehacc-org.mail.protection.outlook.com
  • 0 us-smtp-inbound-1.mimecast.com
  • 0 us-smtp-inbound-2.mimecast.com
TXT
Show 6 TXT records
  • cfsqcls3lfdv0fvmmt1l79a8m0
  • jblti4v7l7vt94ruftqd19hiu5
  • qf5bsneuuvnocchnq521j5iegd
  • yBi8VuLHlVIKvXUe4Uvc4Zj3AyrqinKHPz3OiUxlj6d7F7yBF8nT+DSnmRQuyupelwHgICre95PQG8soFtq/Sw==
  • 0ed1fe018a05f47ddf58484178ad5b8679f5c559d0
  • @=google-site-verification=dbKv-E31QPL7aTMsDRdTeXkoJFdylSd4s-GxrKSSLAI

Email authentication partial

SPF
v=spf1 include:us._netblocks.mimecast.com include:mailgun.org include:spf.constantcontact.com include:mail.zendesk.com include:asp-spf1.yardi.com include:spf.protection.outlook.com ip4:50.171.94.51 ip4:50.171.94.42 ip4:38.126.9.117 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:re+glsmiklsv86@dmarc.postmarkapp.com; sp=none; aspf=r;
policy: none (monitoring only) · sp=none
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XyMC4LWipYQeKA6m1/BhCy+2NXKtNJ6Al8OHdCKTe2g6Emn6hWYxJlzP3C5vXlex8FB2oL2NeqXEt…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6UdWABVjFCUvQKX4RAjwJmdssKA6yAsy+n29ZozLspY3pR2u7vIO+6vMAmIlGgGhUs2zeN0kniKHp…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3CS67JshFis0daPGaRYH386ekK0KpAK9cKDNtSjQDLsXI1icomgre6XFVe8Ywx0RMLKH2aTSJQxL8L+wE…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9E4aE/tOUfoft0xMbevVaddQIrEtxWGJfmV4rXpEKwShCBbTQp8Gnefcl+ZEvmoLS1oWeggitkT0WvYwfD…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2026-02-03 to 2027-03-07
Expires in 270 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://thehacc.org/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (9)

Linked from (1)

Use this data via API

Everything on this page for thehacc.org is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/thehacc.org" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →