24six.app
HTML metadata
Technology
- CDN
- Cloudflare
- Analytics
-
- Cloudflare Insights
- Google Tag Manager
Third-party hosts loaded (7)
- unpkg.com×4
- cdn.jsdelivr.net×3
- cdnjs.cloudflare.com×2
- kit.fontawesome.com×1
- static.cloudflareinsights.com×1
- www.google.com×1
- www.googletagmanager.com×1
DNS records live
- NS
-
- dylan.ns.cloudflare.com
- nina.ns.cloudflare.com
- MX
-
- 0 24six-app.mail.protection.outlook.com
- TXT
-
Show 4 TXT records
MS=ms99338561brevo-code:3753eef322f7b58fa836cb1839b8147bgoogle-site-verification=3ZHyHyPFn3yY4eEGuA5zBocmW1enezuSwNi1jgfnpXAgoogle-site-verification=HHo58h5FMk9GbaVqmDrfddjaUptkTqN2UrCSGVE3sCA
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.compolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwupnGn4rPmnKkz2Hd2oHl3okLupy/vFV3efSzkNqJCRefMXo9ZiQ/n00Sj4qfgCha4ph/yMOOUdXH… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAbhOO4qt6AbRUF4Ja3eC5AEkXVaKyLDg++l+6+Bthz4/NGeyEX1uVf6SsS64c58A53tp4snGDfilJ… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - selector1:
Certificate (current)
WE1
Expires in 31 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://24six.rb https://24six.rustybrick.net https://*.24six.rustybrick.net https://js.stripe.com https://www.googletagmanager.com https://www.google.com https://maps.googleapis.com https://ajax.googleapis.com https://cdnjs.cloudflare.com https://challenges.cloudflare.com https://static.cloudflareinsights.com https://cdn.jsdelivr.net https://cdn.ckeditor.com https://kit.fontawesome.com https://maxcdn.bootstrapcdn.com https://releases.transloadit.com https://unpkg.com https://widget.intercom.io https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://24six.rb https://24six.rustybrick.net https://*.24six.rustybrick.net https://fonts.googleapis.com https://fonts.bunny.net https://fonts.cdnfonts.com https://maxcdn.bootstrapcdn.com https://cdn.jsdelivr.net https://unpkg.com https://releases.transloadit.com; font-src 'self' data: https://24six.rb https://24six.rustybrick.net https://*.24six.rustybrick.net https://f- strict-transport-security
max-age=31536000; includeSubDomains
Links to (2)
- apple.com×2
- google.com×2