unitedwaymcca.org

HTML metadata

Technology

Server

nginx

CMS

Drupal

jQuery

1.10.2 known XSS (<3.5)

Analytics

• Google Tag Manager

Fonts

• Font Awesome

Third-party hosts loaded (6)

• cdn.jsdelivr.net×5
• cdnjs.cloudflare.com×2
• use.fontawesome.com×2
• ajax.googleapis.com×1
• js.stripe.com×1
• www.googletagmanager.com×1

Social

• facebook
• instagram
• youtube
• linkedin

Contact

Phone

• 94-1322169
• 93901831-372-802

Registration

Registrar

Tucows Domains Inc.

Created

2000-03-23

Expires

2033-03-23 2487 days left

Updated

2024-02-28

Name servers

• ns1.oneeach.com
• ns2.oneeach.com

DNS records live

NS

• ns1.oneeach.org
• ns2.oneeach.org
• ns3.oneeach.org
• ns4.oneeach.org
• ns5.oneeach.org
• ns6.oneeach.org

MX

• 0 unitedwaymcca-org.mail.protection.outlook.com

TXT

• scph0122._domainkey.unitedwayclallam.org
• scph0122._domainkey.bounces.unitedwayclallam.org

Verified for

• Atlassian
• Google

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:upicsolutions.com include:spf.constantcontact.com include:amazonses.com -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=reject;adkim=r;aspf=r;pct=100;rua=mailto:postmaster@unitedwaymcca.org;ruf=mailto:abuse@unitedwaymcca.org

policy: reject (enforced) · sp=reject

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCeHiWQdER4FUC7OiHr7ZMDJgoIlJZwEVO2ImOCjANGssTMNkLpjEkLB7G4C/pZppfTYDzhnUkQs48yvCzDAj…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.unitedwaymcca.org/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (25)

• youtube.com×1
• wescom.org×1
• wccb.com×1
• usbank.com×1
• tmdcreative.com×1
• swensonandsilacciflowers.com×1
• pge.com×1
• pacificvalleybank.com×1
• oneeach.com×1
• natividadfoundation.org×1
• montagehealth.org×1
• linkedin.com×1
• ksbw.com×1
• instagram.com×1
• impactmontereycounty.org×1
• hospitalcouncil.org×1
• facebook.com×1
• doctorsonduty.com×1
• constantcontactpages.com×1
• comcast.com×1
• charitynavigator.org×1
• candid.org×1
• bayfed.com×1
• amwater.com×1
• 211montereycounty.org×1

Linked from (2)

• srcinternational.org×1
• mbep.biz×1