axa-assistance.be

Technology

Server

nginx

DNS records live

NS

• ns1.markmonitor.com
• ns2.markmonitor.com
• ns3.markmonitor.com
• ns4.markmonitor.com
• ns5.markmonitor.com
• ns6.markmonitor.com
• ns7.markmonitor.com

TXT

Show 5 TXT records

• bdkswqbncx6xsvcz10ndf9t84fdhqsv6
• slynjyq6rsn9sq9dcd6gkk0380k52fzb
• s24km68q1m50bhn2bhd696w13wdsx717
• hwpkgd6nzxzwfzk0lbnzg9zhqkjch3z5
• _hu37hlhs2r4evla7chigbo2zg0r1b78

Email authentication no MX

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=reject;adkim=s;aspf=s

policy: reject (enforced) · sp=reject

DKIM

Show 12 DKIM selectors

• default: v=DKIM1; p=
• google: v=DKIM1; p=
• selector1: v=DKIM1; p=
• selector2: v=DKIM1; p=
• k1: v=DKIM1; p=
• k2: v=DKIM1; p=
• mail: v=DKIM1; p=
• dkim: v=DKIM1; p=
• s1: v=DKIM1; p=
• s2: v=DKIM1; p=
• mxvault: v=DKIM1; p=
• smtpapi: v=DKIM1; p=

selectors probed

Certificate (current) wrong cert

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked over plain HTTP: http://axa-assistance.be/

findings

• checked over plain HTTP
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Linked from (2)

• pechard.be×1
• deschepper-debont.be×1