indexo.dev

vpap.org

.org crawl

First seen 2026-04-13 · Last seen 2026-05-06 · ok HTTP/1.1 200 1470 ms crawled 2026-05-06

US · 3.164.68.60 · AS16509 Amazon.com, Inc.

Reputation 92/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Nonpartisan Political Data | Virginia Public Access Project
Description
The Virginia Public Access Project (VPAP) is a nonprofit that connects Virginians with nonpartisan data on campaign finance, elections, and state government. Explore tools that make Virginia politics transparent and accessible.
Language
en
Canonical
/

Open Graph

url
www.vpap.org/
title
vpap.org
site name
The Virginia Public Access Project
description
Your Window into Virginia Politics

Technology

CDN
Amazon CloudFront
Server
Heroku
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • vpap-production.s3.amazonaws.com×14
  • www.googletagmanager.com×2
  • js.sentry-cdn.com×1

Social

Contact

Phone

Registration

Registrar
Network Solutions, LLC
Created
1999-12-03
Expires
2026-12-03 198 days left
Updated
2025-10-09
Name servers
  • ns-1487.awsdns-57.org
  • ns-1562.awsdns-03.co.uk
  • ns-234.awsdns-29.com
  • ns-810.awsdns-37.net

DNS records live

NS
  • ns-1487.awsdns-57.org
  • ns-1562.awsdns-03.co.uk
  • ns-234.awsdns-29.com
  • ns-810.awsdns-37.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 5 TXT records
  • MS=ms24591425
  • facebook-domain-verification=057frl355skuv3hr9g89dtdxgxpfw3
  • google-site-verification=T2ilqHCLHFu8qfWPe5ImqSNs880SmAOFjA1JHUucgKY
  • google-site-verification=nH9kyxT_CsBwjPzCzzNUrP3BJYcjKFIvcRUu88OYZUM
  • loaderio=f3b65e0f79975c55b9a48756e177e17b

Email authentication strong

SPF
v=spf1 include:_spf.google.com include:servers.mcsv.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIbm8iJ75h5QwGz8GHrSCgvxsX0oAb3UnxknRoh5WXo7TJsiZXY5Dbn+5iR03bINxDaReoCeFyC+sR1kEqQq…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

Amazon RSA 2048 M01
from 2025-12-19 to 2027-01-18
Expires in 244 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.vpap.org/

present
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-content-type-options
nosniff
cross-origin-opener-policy
same-origin

Links to (5)

Linked from (1)