bozgroup.eu

HTML metadata

Technology

Server

Apache

CMS

WordPress 6.8.5

PHP

7.4.33 end of life

jQuery

3.2.1 known XSS (<3.5)

Cookie consent

• Cookiebot

Third-party hosts loaded (6)

• bozgroup.nl×3
• unpkg.com×2
• ajax.googleapis.com×1
• bozgroup.de×1
• consent.cookiebot.com×1
• gmpg.org×1

Social

• twitter
• facebook
• linkedin
• instagram

Contact

Email

• boz@bozgroup.eu

Phone

• +31164240910

DNS records live

NS

• ns01.one.com
• ns02.one.com

MX

• 255 bozgroup-eu.mail.protection.outlook.com

Email authentication strong

SPF

v=spf1 mx ip4:185.10.99.0/24 ip6:2a00:c70:1:185:10:99::/96 ip4:188.201.117.25 ip4:212.121.104.213 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:ictboz@bozgroup.eu; ruf=mailto:ictboz@bozgroup.eu; fo=1

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlAkXyEw7O5Ru5l2s9ITfo3/uE3imPusrbGOWASDHcDQDHsrGQBzx2FjPbvXDGbsVQHTHfKYHnEinV…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://bozgroup.eu/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• bozgroup.de×1
• bozgroup.nl×1
• facebook.com×1
• google.com×1
• instagram.com×1
• linkedin.com×1
• operaconceptdesign.nl×1
• twitter.com×1

Linked from (2)

• bozgroup.de×1
• bozgroup.nl×1