indexo.dev

unapcict.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-08 · ok HTTP/1.1 200 747 ms crawled 2026-05-08

NL · 20.105.232.4 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

sector government type homepage

HTML metadata

Title
Welcome to the Asian and Pacific Training Centre for Information and Communication Technology for Development | APCICT/ESCAP
Language
en
Generator
Drupal 10 (https://www.drupal.org)
Canonical
http://unapcict.org/node/1

Technology

CMS
Drupal
Analytics
  • Google Tag Manager
Fonts
  • Font Awesome
  • Google Fonts
Third-party hosts loaded (7)
  • fonts.googleapis.com×3
  • cdn.jsdelivr.net×2
  • cdnjs.cloudflare.com×2
  • code.jquery.com×1
  • fonts.gstatic.com×1
  • use.fontawesome.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
Cloudflare, Inc.
Created
2005-10-04
Expires
2027-10-04 501 days left
Updated
2022-10-09
Name servers
  • desi.ns.cloudflare.com
  • will.ns.cloudflare.com

DNS records live

NS
  • desi.ns.cloudflare.com
  • will.ns.cloudflare.com
MX
  • 46 route3.mx.cloudflare.net
  • 63 route2.mx.cloudflare.net
  • 74 route1.mx.cloudflare.net
TXT
  • 224fjq5fkpt4ip7mc5psfg4cmt

Email authentication weak

SPF
v=spf1 include:_spf.mx.cloudflare.net ~all
softfail (~all)
DMARC
not published
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCW4mbwngsDSW9P6Gbc4PJd+gs6v/arrjchmKX30PCyg
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-04-12 to 2026-10-13
Expires in 145 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://unapcict.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' 'unsafe-inline' data *.analytics.google.com *.google-analytics.com http://fonts.gstatic.com *.gstatic.com *.google.com *.google.it *.google.video.com *.doubleclick.net *.fontawesome.com *.cloudflare.com *.unescap.org pre-unapcict-unescap.un.org unapcict.org www.unapcict.org static.cloudflareinsights.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' unpkg.com *.jsdelivr.net *.googletagmanager.com *.bootstrapcdn.com *.analytics.google.com *.google-analytics.com region1.analytics.google.com *.jquery.com *.cloudflare.com *.gstatic.com *.google.com pre-unapcict-unescap.un.org unapcict.org www.unapcict.org static.cloudflareinsights.com ajax.cloudflare.com ; style-src 'self' 'unsafe-inline' *.fontawesome.com *.jsdelivr.net *.googleapis.com https://fonts.gstatic.com https://unpkg.com *.google.com *.gstatic.com *.cloudflare.com https://unescap.org https://www.unescap.org pre-unapcict-unescap.un.org unapcict.org www.unapcict.org code.jquery.com ; img-src 'self' 'unsafe-i
strict-transport-security
max-age=1000; includeSubDomains

Links to (4)

Linked from (2)