thehamiltondc.com

HTML metadata

Title: The Hamilton | Eat, Drink, Listen
Description: A uniquely eclectic experience located just steps from the White House, The Hamilton has quickly become Washington, DC’s favorite gathering place for music, art, entertainment and inventive dining. The Hamilton is designed to welcome any crowd or party in search of an exceptional way to celebrate.
Language: en-US
Canonical: https://www.thehamiltondc.com/

Open Graph

url: https://www.thehamiltondc.com/
title: The Hamilton | Eat, Drink, Listen
site name: The Hamilton | Restaurant & Venue in Washington, DC
description: A uniquely eclectic experience located just steps from the White House, The Hamilton has quickly become Washington, DC’s favorite gathering place for music, art, entertainment and inventive dining. The Hamilton is designed to welcome any crowd or party in search of an exceptional way to celebrate.

Technology

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (14)

images.getbento.com×16
theme-assets.getbento.com×4
app-assets.getbento.com×3
www.googletagmanager.com×2
assets-cdn-refresh.getbento.com×1
cdnjs.cloudflare.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
media-cdn.getbento.com×1
widgets.resy.com×1
wsv3cdn.audioeye.com×1
www.facebook.com×1
www.google.com×1
www.gstatic.com×1

Social

Contact

Phone

(202) 787-1000

Address

st steps from the White House, The Hamilton has quickly become Washington, DC\u2019

Registration

Registrar

Network Solutions, LLC

Created

2011-02-21

Expires

2031-02-21 1739 days left

Updated

2025-12-23

Name servers

ns53.worldnic.com
ns54.worldnic.com

DNS records live

NS

ns53.worldnic.com
ns54.worldnic.com

MX

0 thehamiltondc-com.mail.protection.outlook.com

TXT

MS=ms60418934
g3YtEvlgY7E1KartBKxW8FzkfulvGycuvm7SDCKWKbowdSC7gaEn9pxIx7FbSNaK1UtLQXjBp28aktWPrLs0Dg==
facebook-domain-verification=4ewth6g764r8lni2bfc9vm7iad8zp3

Email authentication strong

SPF

v=spf1 +ip4:68.66.200.219 +include:spf.a2hosting.com +include:spf.protection.outlook.com +include:spf.exclaimer.net -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWIuyg8d/Pau5fRBrY+AA0S/DSeKBEcN4waY7znfy2x7HpRkvuCjTdtT+KBaffY0vVHZrwwFuZsPcx…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDoxtzw2LcNGlfPJupoOXRs0lO665sMLq01lOdppqu95hK4Meaw8Zb5tj7iRT+pwfRNZVeh0v4i7xwTe6wW7W…

selectors probed

Certificate (current)

R12

from 2026-04-03 to 2026-07-02

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.thehamiltondc.com/

present

strict-transport-security
content-security-policy
x-frame-options
cross-origin-opener-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: default-src * blob: data: 'unsafe-inline' 'unsafe-eval'; script-src 'self' * https://cdn.us.heap-api.com https://heapanalytics.com https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval'; script-src-elem * https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval'; img-src 'self' * https://heapanalytics.com https://viewer.threshold360.com blob: data:; style-src 'self' * https://heapanalytics.com https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval' blob:; connect-src 'self' * https://c.us.heap-api.com https://heapanalytics.com https://viewer.threshold360.com wss://viewer.threshold360.com blob:; font-src 'self' * https://heapanalytics.com https://viewer.threshold360.com data:; frame-src 'self' * https://viewer.threshold360.com; worker-src * blob:; media-src * blob: data:; frame-ancestors 'self';
strict-transport-security: max-age=2592000; includeSubDomains
cross-origin-opener-policy: same-origin