4ncl.co.uk

HTML metadata

Technology

Server

openresty

jQuery

1.3.2 known XSS (<3.5)

Third-party hosts loaded (2)

• ajax.googleapis.com×1
• free.timeanddate.com×1

Social

• twitter
• facebook

DNS records live

NS

• ns1.websupport.cz
• ns2.websupport.cz
• ns3.websupport.eu

MX

• 10 mx10.active24.eu
• 100 mx20.active24.eu

TXT

• v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrLHiExVd55zd/IQ/J/mRwSRMAocV/hMB3jXwaHH36d9NaVynQFYV8NaWi69c1veUtRzGt7yAioXqLj7Z4TeEUoOLgrKsn8YnckGs9i3B3tVFB+Ch/4mPhXWiNfNdynHWBcPcbJ8kjEQ2U8y78dHZj1YeRXXVvWob2OaKynO8/lQIDAQAB;

Email authentication weak

SPF

v=spf1 a mx include:_spf.websupport.cz include:spf.mandrillapp.com -all

strict (-all)

DMARC

not published

DKIM

• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
• mail: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptv83eyMqwFFVQHIgqN0F3XwUIYOKuH3u6sG9ql1JfaY/CF3mnXlLSo5F+jRiGW7D+QUxnHGV6zCMN…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://4ncl.co.uk/

present

• content-security-policy

findings

• missing HSTS
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (12)

• twitter.com×1
• shorturl.at×1
• jotform.com×1
• johnrobinsonchess.org×1
• java.com×1
• hullchess.com×1
• hull.ac.uk×1
• facebook.com×1
• englishchess.org.uk×1
• chesstrust.org.uk×1
• chess.co.uk×1
• beyond-events.co.uk×1

Linked from (1)

• englishchess.org.uk×1