indexo.dev

togetherforgirls.org

.org crawl

First seen 2026-04-12 · Last seen 2026-05-20 · ok HTTP/1.1 200 2317 ms crawled 2026-05-20

US · 104.21.85.12 · AS13335 Cloudflare, Inc.

Reputation 100/100

sector nonprofit type homepage

HTML metadata

Title
Together for Girls | Home
Description
Together for Girls drives prevention, healing, and justice to end sexual violence against children and adolescents and create a safer world.
Language
en
Generator
SEOmatic
Canonical
https://www.togetherforgirls.org/en
Feeds

Open Graph

url
https://www.togetherforgirls.org/en
title
Home
locale
en
site name
Together for Girls
description
Together for Girls drives prevention, healing, and justice to end sexual violence against children and adolescents and create a safer world.

Technology

CDN
Cloudflare
CMS
Next.js
JS framework
Next.js
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • static.everyaction.com×2
  • fonts.googleapis.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2011-03-10
Expires
2027-03-10 293 days left
Updated
2026-01-14
Name servers
  • kate.ns.cloudflare.com
  • patryk.ns.cloudflare.com

DNS records live

NS
  • kate.ns.cloudflare.com
  • patryk.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:_spfprod.ngpvan.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; pct=100
policy: quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqm5CuAOJZxg9zzaHfo9uXOkYwZsB7EGiwxXVga41E7JJel6lcosB2xeu3kU5xI+q76CLMUrpzEw9k3…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-04-25 to 2026-07-24
Expires in 65 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.togetherforgirls.org/en

present
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
connect-src 'self' https://tfg.mutualcp.com/ ws://localhost:3000/_next/webpack-hmr https://*.everyaction.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://vimeo.com https://heapanalytics.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://consentcdn.cookiebot.com/ https://export.highcharts.com/ https://*.mutualcp.com https://togetherforgirls.findahelpline.com; default-src 'self' cdnjs.cloudflare.com prezi-nocookies.com vimeo.com https://heapanalytics.com https://tfg.mutualcp.com/ https://*.mutualcp.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.everyaction.com https://*.cloudflare.com https://*.hotjar.com https://cdn.heapanalytics.com https://heapanalytics.com https://consent.cookiebot.com/ https://consentcdn.cookiebot.com/ lf16-tiktok-web.ttwstatic.com www.tiktok.com platform.twitter.com www.instagram.com https://tagmanager.google.com e.prezicdn.net player.vimeo.com www.youtube.com togetherforgi

Links to (7)

Linked from (2)