tranzac.org
HTML metadata
Technology
- CDN
- Netlify
- Fonts
-
- Google Fonts
Third-party hosts loaded (5)
- www.datocms-assets.com×8
- js.stripe.com×3
- graphql.datocms.com×2
- fonts.gstatic.com×1
- www.paypal.com×1
Social
Contact
- Address
- 292 Brunswick AveToronto, ONM5S 2M7416-923-8137
Registration
- Registrar
- NameCheap, Inc.
- Created
- 2001-11-04
- Expires
- 2026-11-04 153 days left
- Updated
- 2025-10-10
- Name servers
-
- dns1.p05.nsone.net
- dns2.p05.nsone.net
- dns3.p05.nsone.net
- dns4.p05.nsone.net
DNS records live
- NS
-
- dns1.p05.nsone.net
- dns2.p05.nsone.net
- dns3.p05.nsone.net
- dns4.p05.nsone.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- CNAME
-
- tranzac.netlify.app
- Verified for
-
- Stripe
Email authentication no MX
- SPF
- not published
- DMARC
-
v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email;policy: none (monitoring only) - DKIM
-
Show 4 DKIM selectors
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszyab/o8Thk31p5CIOS0Tz9zeVuZU272fkqFkF7GRB5QJqwc0BLvJD67UI8KZvJth4BEM+dGVBiTwm… - google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJe3aLccUHXPraHwkVkA5FMePizHSdHIA3KLY2u1pd2qCHv5glX7DekYKHEjFJsuIcN08w4CxWdS7v… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mi+LQjXdyaXS3291AgUIjWZzl85wXH1QR7a0I2eGbEyb/cxxToeI+59gHZW9rVNRdLxyjcQH5zzWsW2uz… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnfxigu/gvBSVLFiEVNxh/m2Ql4WlBXYooz/kc+2jmkZ30jamIxp9ygiJgbXE3JwqxPSfOfuSZmQGpoIC4…
selectors probed - default:
Certificate (current)
E8
Expires in 62 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
camera=(), microphone=(), geolocation=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' https://challenges.cloudflare.com https://js.stripe.com https://www.paypal.com; frame-src https://challenges.cloudflare.com https://js.stripe.com https://www.paypal.com; img-src 'self' https: data: blob:; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://graphql.datocms.com https://plausible.io https://js.stripe.com https://www.paypal.com;- strict-transport-security
max-age=31536000; includeSubDomains