bd2.co.uk

HTML metadata

Technology

Server

Microsoft-IIS

CMS

Ghost

Fonts

• Adobe Fonts

Third-party hosts loaded (3)

• use.typekit.net×4
• p.typekit.net×2
• www.google.com×1

Contact

Phone

• 1942 234900

DNS records live

NS

• ns25.domaincontrol.com
• ns26.domaincontrol.com

MX

• 10 bd2-co-uk.mail.protection.outlook.com

TXT

• 484qtnjavpkgq22uc2g1thquna
• q6o2gevu6o41thf9m32ug992g8

Email authentication partial

SPF

v=spf1 include:mailgun.org include:spf.protection.outlook.com include:_spf.createsend.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:support@bd2.co.uk

policy: none (monitoring only)

DKIM

Show 4 DKIM selectors

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/BHrzf5UDE4PnZurXRH69AiJ1ysf+OFh2nMxlXafpuxK9LjRq67vDXA9R8HGOum7P8YCjt7mHLM8Z…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGAjNmYuaz+MsOCM78jz/PFgURv/N8U7k7Fi91fgqBWNOeVQQ7Z0BSgXC59kHD45ftjYkdqN8cC8ug…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuELeGrXHxz/isoW3/MHVhsXq5/tph87bHnvt+u+758NSazAGFSGMV3ziugbw6L8XY7cRE2Dz/uAHmJSIv1…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCidvvvDoyFIIqCPn9QW3J7OQB+8fk+GZoCwEqHpyHrvAQFV8XzwJGYcPAPw/MTimGoOeppSbYq8RvTcQU4495UKy…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://bd2.co.uk/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• cross-origin-opener-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing Referrer Policy
• missing Permissions Policy

Links to (1)

• google.com×1

Linked from (2)

• joiningjack.org×2
• premierworkwear.com×1