apah.pt

HTML metadata

Technology

Server

nginx

CMS

WordPress 7.0

jQuery

3.7.1

Fonts

• Google Fonts

Third-party hosts loaded (1)

• fonts.googleapis.com×3

Social

• youtube
• facebook
• linkedin

Contact

Phone

• 2024-08-13 18
• +351 218 008 948
• +351 915 780 796
• 00000000000000
• 00818030539140

DNS records live

NS

• pdns1.dnscpanel.com
• pdns2.dnscpanel.com
• pdns3.dnscpanel.com

MX

• 0 apah-pt.mail.protection.outlook.com

Verified for

• Google
• Microsoft 365

Email authentication weak

SPF

v=spf1 ip4:185.12.116.214 include:spf.protection.outlook.com include:sendgrid.net -all

strict (-all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFcwHPFd1G8mecmYvUkQ54bBGfkm1eXFUID5hwH1yeeBJTDYzJXh/VLbwHyaz+y1uF3X+Qa66xlEAH…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0I0J/nZZPCq4BiJFQ4jbG0zgKCJuBaW1B9ahy1nE62TBX4sKsdoXEopaTqkJkfGd7FqfFAzrdpMO9O6snB…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD0cdJHduSOs76DzpbIoNVOcnliH5l0GFtmkNL70iwgTf/0t7sJ2UBgdfVt0JCJ3M1+MzD9molVQCtaFthLzYGPcZ…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://apah.pt/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• youtube.com×1
• linkedin.com×1
• facebook.com×1
• dominios.pt×1

Linked from (1)

• cnsaude.pt×1