alphalegal.co.uk

HTML metadata

Technology

Server

nginx

jQuery

2.2.4 known XSS (<3.5)

Analytics

• Google Tag Manager

Third-party hosts loaded (4)

• le-cdn.website-editor.net×17
• cdn.website-editor.net×8
• static-cdn.website-editor.net×3
• www.googletagmanager.com×1

Social

• youtube

DNS records live

NS

• ns1016.ui-dns.com
• ns1032.ui-dns.de
• ns1077.ui-dns.org
• ns1112.ui-dns.biz

MX

• 10 mx00.ionos.co.uk
• 10 mx01.ionos.co.uk

TXT

• 4i6p46vf171lpfbsk3c908c4dm
• fgvmmmj2lnhqfp9gm744j42734

Verified for

• Google

Email authentication strong

SPF

v=spf1 include:_spf-eu.ionos.com include:amazonses.com ~all

softfail (~all)

DMARC

v=DMARC1;p=reject;pct=100

policy: reject (enforced)

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.alphalegal.co.uk/

present

• strict-transport-security
• content-security-policy
• x-content-type-options

findings

• CSP uses wildcard sources
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• youtube.com×1
• start-software.com×1
• modernlawmagazine.com×1
• legacylegal.co.uk×1
• countrywidegroup.co.uk×1
• clio.com×1
• britishwillsandprobateawards.co.uk×1
• alphasoftware.com×1

Linked from (2)

• start-software.com×1
• uklta.org.uk×1