avis.no

HTML metadata

Technology

CDN

Amazon CloudFront

Server

Apache

Third-party hosts loaded (1)

• avisassets.abgemea.com×16

Social

• facebook
• youtube

Contact

Phone

• 960 605 128

Address

Avis Budget Norway, Drengsrudbekken 12, 1383 Asker, Norge

DNS records live

NS

• ns1.netnames.net
• ns2.netnames.net
• ns5.netnames.net
• ns6.netnames.net

MX

• 5 avis-no.mail.protection.outlook.com

TXT

Show 6 TXT records

• _44aqe3kry05npqs1bk142wdeqr818c0
• _fomock7r0b7ytjrj1u9gdt7vlasc56m
• hxy1jx1qgpc8ft6f88vvwsvcgcsxzr3r
• py051cqs4sysjz4lgj4x6s8vgy9r44d9
• 71F1-A2CD-DAB8-8149-CD9B-43D7-E7FB-2921
• 8jblsv1rwly443xkjf58lskzcb888fby

Verified for

• Google
• Microsoft 365

Email authentication strong

SPF

v=spf1 exists:%{i}._i.%{d}._d.espf.agari-dns.net include:%{d}.5c.spf-protect.agari-dns.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; fo=1; ri=3600; rua=mailto:avis@rua.agari.com; ruf=mailto:avis@ruf.agari.com

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjfN1hRM3XLeO+5y3bLW5PJD5d+bY5TRtR1YvIkBbH+q9Lmu0WXzI/zC1x6L6Zbj+hc21vZsh5amvP…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.avis.no/

present

• strict-transport-security
• content-security-policy
• x-frame-options

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• youtube.com×1
• facebook.com×1
• avisleasing.com×1
• avisbudgetgrouplicensing.com×1

Linked from (3)

• airlines.no×1
• norskcountrytreff.no×1
• motormagazinet.no×1