indexo.dev

umifund.org

.org crawl

First seen 2026-04-21 · Last seen 2026-05-11 · ok HTTP/1.1 200 456 ms crawled 2026-05-14

US · 160.153.138.10 · AS398787 GoDaddy.com, LLC

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Home - UMI Fund
Language
en-GB
Generator
Site Kit by Google 1.178.0
Feeds

Open Graph

url
https://umifund.org/
title
Home - UMI Fund
locale
en_GB
site name
UMI Fund
description
THE URBAN MOVEMENT INNOVATION FUND CONNECTS, ALIGNS AND STRENGTHENS PEOPLE POWER FOR A ZERO CARBON FUTURE Read More Who We Are UMI Fund is a convenor of the field, an advisor to philanthropy, and a grant maker. We work to build the power needed to ensure pressure for climate action becomes relentless and unignorable. We […]

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×3
  • www.googletagmanager.com×2
  • fonts.gstatic.com×1
  • gmpg.org×1

Registration

Registrar
Domain.com - Network Solutions, LLC
Created
2019-08-01
Expires
2026-08-01 73 days left
Updated
2025-07-08
Name servers
  • ns1.domain.com
  • ns2.domain.com

DNS records live

NS
  • ns1.domain.com
  • ns2.domain.com
MX
  • 10 mail.protonmail.ch
  • 20 mailsec.protonmail.ch
TXT
  • rdgirk30j3cgt3qats3oke5f68
  • protonmail-verification=6ab8d07c1daea980c12d194f5876277da5d48c9f
  • i3ke2fjetlfd1ltgu5t42nep7e

Email authentication partial

SPF
v=spf1 include:_spf.google.com include:servers.mcsv.net include:_spf.protonmail.ch mx ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:robin.oak@umifund.org
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-04-09 to 2026-07-08
Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://umifund.org/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Linked from (1)