Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
BURL Variantswww/non-www, trailing slash, HTTP→HTTPSREVIEW
www / non-www
Inconsistent — duplicate content risk
HTTP → HTTPS
Consistent
BTLS Certificate Expiry & Recommendations155 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Submit your domain to hstspreload.org to be added to the Chrome preload list
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records4 A records, 84 ms lookupPASS
| A | 143.204.194.72, 143.204.194.82, 143.204.194.61, 143.204.194.26 |
| AAAA | — |
| CNAME | — |
| NS | ns-1860.awsdns-40.co.uk, ns-1018.awsdns-63.net, ns-279.awsdns-34.com, ns-1148.awsdns-15.org |
| MX | 10 aspmx.l.google.com 20 alt2.aspmx.l.google.com 20 alt1.aspmx.l.google.com 30 aspmx3.googlemail.com 30 aspmx4.googlemail.com 30 aspmx5.googlemail.com 30 aspmx2.googlemail.com |
| TXT | atlassian-domain-verification=pDoSyXtzAVxSEb/lQ90Pfrgh87LFeL3vh9cAmjYGXaONtLKtJz... onetrust-domain-verification=ae6ed1d46523448a905b9d8781b1f2d9 docusign=852fdcf3-d757-4993-acd7-50a6a836365f linear-domain-verification=fdr7mty4ieug anthropic-domain-verification-t4e4qe=Q1VWFhuqdtNXUmkvbvPe0aNCH google-site-verification=9J3ulCSuevKr0hSdxoSmyccnjKgO1Qk_h55qjGJWMdk onetrust-domain-verification=6311c78fff614a938475a7085108477b canva-site-verification=IqTb0UBeilINf10w5raSTQ google-site-verification=uvhS3R59UN5exwoSVEi9oFgrQtcrDlWYQMcWRVe5S68 zapier-domain-verification-challenge=822070a7-9aa6-45fc-a3fa-d67b2dbc6c23 SPF v=spf1 include:gofundme.com._nspf.vali.email include:%{i}._ip.%{h}._ehlo.%{d}._... adobe-idp-site-verification=b23a174f3ecb4906444742af94b4c61d1948b6ba9665d33d2127... openai-domain-verification=dv-QetyqJL9vMGOTwGXZe04zDzf google-site-verification=O7naSlyLdrJJfCqA4ktOYCn9vrudsbppXY8j0EvSbC0 48BCBFD65C maestro-cloud-domain-verification-8sf8ap=UAP61AxkIXLrtLqM3DPIjAOP3 facebook-domain-verification=stk03ifpht9yaex2dibsxivrr9yor2 google-site-verification=yTucH5oN_CeaxxpMntyk_jYQMtGyAv8W6rPZjHdXwIA gamma-domain-verification-g2tf71=XUfSVhJFiN82HacNFl6iLBfvZ _globalsign-domain-verification=MK_ZKmss4D_DdzGOsssHxxBOK6hJc6LGycFvNOESdZ twilio-domain-verification=0fbe678874c1832be4b21e661c491ee6 globalsign-domain-verification=wvdz6fqNpGYoUxoyCbEUOYrkz-Z8Nh2zXAoS8lsLRh knqas9grs1e90id70n6qtblc6s hubspot-domain-verification=OWZlYTIzYmQtNjhlMi00MmU4LWI0NWEtYjE4NGM2MDFiZjdl google-site-verification=3LLkSZCqjHLPPrJiZMqE6AUja9L69F0ogae8o7JU6x4 google-site-verification=1VNhR6mITAZOOgVYtcdutrYdASgKtAnRITXKBQH6N3o google-site-verification=MyZCdkOIehJ00yJgtChbK4geHjxlUnuSGXwBI4n73xs google-site-verification=qYAWkOCPaLxMmYxSW2YahQ4GG4la3a9hNWFhDJcd2r4 google-site-verification=lWd6YulLrAH6-0uZ5AX-P5-VcxTnfjF2aQ9Ey7lK96o MS=ms75016599 google-site-verification=cZ9Hawb_wfuisC8fkQbwE1v8bjFJ0cf2bepzKRFDsXQ apple-domain-verification=VWhGR6I4xDAzdl50 mgverify=fdcb133238019c86b951dbb58430f60163ad2967fa91a367a65ea9a4edcf538e stripe-verification=7e70d91b569f8a0590a7b1b4c2933dade452811dee08d86cfce9ea1db35b... _wpengine-sso-challenge=3Bj5M7GKohpXqt6K7ufz30hQAMH google-site-verification=NtmRkQwVZHP-qs02vSRFkLA3Wn8xmi93HEEJsIpQaWU google-site-verification=Lj3x8aEMLy8y3btjGcK48UpZsOJobv1zIFdK6lDzLMY loom-site-verification=2d2eebdbc4004cba854c231b81ddbc37 ZOOM_verify_uRWfBI2AbJeSqiNLFUItq5 D24pYKS_dVZOjQrnXT0sZd8wICnikg google-site-verification=-97-MskUtq0BKfJ4HGBHfGDbU2XBfza9wf9pUk_3aWs |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
ARedirect Chain1 redirect(s), 496 ms totalPASS
https://gofundme.com
352 ms · HTTP/1.1
https://www.gofundme.com/
144 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://gofundme.com | 301 | 352 ms | HTTP/1.1 | nginx |
| 2 | https://www.gofundme.com/ | 200 | 144 ms | HTTP/1.1 | nginx |
See the visual redirect chain in the HTTP Probe tab →
A+Crawlabilityrobots.txt present, sitemap with 43 URLsPASS
User-Agent: *
Disallow: /mvc.php*
Disallow: /*contact?t=donation_page_report
Disallow: /*campaign/gallery/*
Disallow: /f/*/widget/*
Disallow: /f/*/donate/sign-in
Disallow: /track
Disallow: /track/exposure
Disallow: /auth
# Disallow all poster images
# https://gofundme.atlassian.net/browse/YO-3839
Disallow: /f/*/fb/* # Facebook
Disallow: /f/*/x/* # Twitter
Disallow: /f/*/ig/* # Instagram
Disallow: /f/*/wa/* # WhatsApp
Disallow: /f/*/li/* # LinkedIn
Disallow: /f/*/e/* # Email
Disallow: /f/*/sms/* # SMS
Disallow: /f/*/fm/* # Messenger
Disallow: /f/*/cl/* # Copy Link
Disallow: /f/*/qr/* # QR Code
Disallow: /f/*/nd/* # Nextdoor
Disallow: /f/*/igs/* # Instagram Story
# Allow LinkedIn bot to access /f/*/li/*
User-agent: LinkedInBot
Allow: /f/*/li/*
# Allow Twitter bot to access /f/*/x/*
User-agent: Twitterbot
Allow: /f/*/x/*
# Disallow modal urls
# https://gofundme.atlassian.net/browse/YO-3840
Disallow: /f/*?modal
Disallow: /f/*/donate
Disallow: /f/*/donations
Disallow: /f/*/share
Disallow: /f/*/leaderboard
Disallow: /sign-in?redirect*
Disallow: /s?*
Sitemap: https://www.gofundme.com/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/i18n/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/de-at/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/de-ch/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/de-de/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-au/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-ca/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-dk/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-fi/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-gb/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-ie/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-no/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/en-se/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/es-es/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/es-us/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/fr-be/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/fr-ca/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/fr-ch/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/fr-fr/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/fr-lu/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/it-it/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/nl-be/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/nl-nl/sitemap.xml
Sitemap: https://www.gofundme.com/sitemaps/pt-pt/sitemap.xml
Sitemap: https://www.gofundme.com/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/en-gb/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/en-ca/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/en-au/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/de-de/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/es-es/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/fr-fr/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/it-it/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/nl-nl/c/sitemap_index.xml
Sitemap: https://www.gofundme.com/pt-pt/c/sitemap_index.xml
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/www/si...
- https://www.gofundme.com/sitemaps/profil...
A+Domain Intelligencegofundme.com — via GoDaddy.com, LLC, 16 years, 5 months old, hosted on AWSPASS
559 days
January 22, 2028
155 days
Issued by Amazon
16 years, 5 months
Registered January 22, 2010
Not enabled
Protects against DNS spoofing
AWS
ASN AS16509
143.204.194.82
GoDaddy.com, LLC
Expiry timeline
Recommended actions
- Enable DNSSEC to protect visitors from DNS spoofing
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
DNSSEC protects against DNS spoofing attacks. While not required, enabling DNSSEC adds an additional layer of security. Contact your DNS provider to enable it.
Without DNSSEC, an attacker who can poison your DNS can hijack your domain — and SSL certs alone don't stop them.
Learn more ▾ ▴
DNSSEC adds cryptographic signatures to DNS records, preventing forged responses from poisoning resolver caches. Without it, an attacker who controls the network path can redirect your domain to a malicious server before any HTTPS handshake happens. Most modern registrars (Cloudflare, Google Domains, Route 53) enable it with one toggle.
Source: ICANN / RFC 4033
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice