aerestech.nl
aerestech.nl
HTML metadata
Technology
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- www.googletagmanager.com×2
- cdn.cookie-script.com×1
Social
DNS records live
- NS
-
- ns1.surfnet.nl
- ns1.zurich.surf.net
- ns2.surfnet.nl
- ns3.surfnet.nl
- MX
-
- 0 aerestech-nl.mail.protection.outlook.com
- 10 mx10.surfmailfilter.nl
- 10 mx11.surfmailfilter.nl
- Verified for
-
- HARICA
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
- not published
- DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKu6wNpLlRrWHsSvgTYI7tRkkO/od4AvX+SH89R0o0TpM4c+JnX+OgkSk4LiDUJwMrQlrP5rJ2WTdr… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1JdWenVY6k40lE2NbLcQ4UtrIEkvqQKJevEzpYS6fzm9qbjc1ZKbAI6eX5yJ/n7gI8/UTqmrzhxQ8Rbd4c… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ZEaN9zmxE5yPE0c3fi3QdbqlNKFWilvZXFrjOy1WiPetw4TE5kpzGyG51XkLPrWYq0eZkNctGt9FlHnZY…
selectors probed - selector1:
Certificate (current)
GEANT TLS RSA 1
Expires in 242 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self)- x-content-type-options
nosniff- content-security-policy
default-src *; style-src 'self' 'unsafe-inline' 'unsafe-eval' *; script-src 'self' 'unsafe-inline' 'unsafe-eval' *; frame-src 'self' *; object-src 'self' ; img-src 'self' data: https:; font-src 'self' data: * https://fonts.gstatic.com; connect-src 'self' *; media-src * data: https:; base-uri 'self';- strict-transport-security
max-age=31536000; includeSubDomains; preload