bobcatimpact.be
bobcatimpact.be
HTML metadata
Technology
- Server
- nginx
- Stack
- Laravel
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Iubenda
- Fonts
-
- Google Fonts
Third-party hosts loaded (10)
- shuttle-storage.s3.amazonaws.com×35
- fonts.googleapis.com×3
- shuttle-assets-new.s3.amazonaws.com×3
- cdnjs.cloudflare.com×2
- kit.fontawesome.com×2
- www.googletagmanager.com×2
- cdn.iubenda.com×1
- cdn.jsdelivr.net×1
- cs.iubenda.com×1
- unpkg.com×1
Social
Contact
DNS records live
- NS
-
- ns1.european-server.eu
- ns3.european-server.com
- ns4.european-server.com
- MX
-
- 10 mx.mailprotect.be
- 50 mx.backup.mailprotect.be
- Verified for
-
Email authentication weak
- SPF
- not published
- DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current) wrong cert
Sectigo Public Server Authentication CA DV R36
Expires in 289 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https: blob:; font-src 'self' data: https:; connect-src 'self' https: wss:; frame-src 'self' https:; object-src 'none'; base-uri 'self'- strict-transport-security
max-age=31536000; includeSubDomains, max-age=31536000; includeSubDomains; preload