bof.org.pl

HTML metadata

Technology

Stack

PHP

Fonts

• Google Fonts

Third-party hosts loaded (1)

• fonts.googleapis.com×3

Social

• facebook
• youtube
• linkedin
• instagram

Contact

Email

• biuro@bof.org.pl

DNS records live

NS

• ns1.nazwa.pl
• ns2.nazwa.pl
• ns3.nazwa.pl

MX

• 0 bof-org-pl.mail.protection.outlook.com

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none; sp=none

policy: none (monitoring only) · sp=none

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwSSB3jz49KwN0ukFCwNTfdoVpsU7KJgKVKY493FzgHk/5xK6jt7I+xGBBmYKCMJIzovgKW8VsnD8i…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbv6GzoxCgk/aUkS8iSnVHx19DiKnur9FcvoXapAem5qvmJMNNRYpORtkZVw4s75Dq4MaoJO3UMFZa…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://bof.org.pl/

present

• content-security-policy

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (22)

• youtube.com×1
• www.lapy.pl×1
• www.gov.pl×1
• www.bialystok.pl×1
• wrotapodlasia.pl×1
• wasilkow.pl×1
• turosnkoscielna.pl×1
• suprasl.pl×1
• stat.gov.pl×1
• linkedin.com×1
• koszykuslugspolecznych.pl×1
• juchnowiec.gmina.pl×1
• instagram.com×1
• gminagrabowka.pl×1
• funduszeuepodlaskie.pl×1
• funduszeeuropejskie.gov.pl×1
• facebook.com×1
• europa.eu×1
• dobrzyniewo.pl×1
• czarnabialostocka.pl×1
• choroszcz.pl×1
• bip.gov.pl×1

Linked from (1)

• rowerowyklimat.pl×1