bodit.cz

HTML metadata

Technology

Server

Apache

jQuery

3.0.0 known XSS (<3.5)

Stack

PHP

Fonts

• Google Fonts

Third-party hosts loaded (4)

• cdn.antee.cz×2
• fonts.googleapis.com×1
• policy.app.cookieinformation.com×1
• www.google.com×1

Contact

Email

• stepanka.holeckova@bodit.cz

DNS records live

NS

• ns1.markmonitor.com
• ns2.markmonitor.com
• ns3.markmonitor.com
• ns4.markmonitor.com
• ns5.markmonitor.com
• ns6.markmonitor.com
• ns7.markmonitor.com

MX

• 10 bodit-cz.mail.protection.outlook.com

TXT

• knowbe4-site-verification=b79b8e9d79918000bdc703d37ee1a8bf

Verified for

• Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:spf.abfoods.com include:spf2.abfoods.com include:spf-001e4301.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:bstnx4lf@ag.eu.dmarcadvisor.com

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC0ZxNkYlIoNtJLwQ+FGhnCYwPRU8SsxSWoi4MNIhXyJ9t/ke5Y9wMXGI9at7P9WcDqJDfxnsel/1Q6JZ02SQ…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.bodit.cz/

present

• strict-transport-security
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• short HSTS max-age
• missing Content Security Policy

Links to (2)

• bodit.uk×1
• antee.cz×1

Linked from (1)

• moraviatour.cz×1