bssh.ac.uk

HTML metadata

Technology

Server

C13

CMS

Joomla

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• ajax.googleapis.com×1
• www.googletagmanager.com×1

Social

• twitter
• instagram
• linkedin
• youtube
• facebook

Contact

Phone

• 494744404

DNS records live

NS

• dns1.lightning1.net
• dns2.lightning1.net

MX

• 10 eu-smtp-inbound-1.mimecast.com
• 10 eu-smtp-inbound-2.mimecast.com

TXT

Show 5 TXT records

• nv95v99m
• MS=ms62962343
• MS=ms79847352
• vglpa08dm1ch7bnt597rolo3t9
• google-site-verification=Okoss6WWRtJbWkyvPZZG072oUBm8vGfGhdOIZ6Uugv4

Email authentication partial

SPF

v=spf1 ip4:89.31.209.32 ip4:89.31.209.107 ip4:89.31.213.18 ip4:89.31.212.206 ip4:134.213.168.30 include:eu._netblocks.mimecast.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.bssh.ac.uk/

present

• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing HSTS
• missing Content Security Policy
• missing Permissions Policy

Links to (12)

• facebook.com×2
• fessh.com×2
• hand-therapy.co.uk×2
• ifssh.info×2
• instagram.com×2
• justgiving.com×2
• light-media.co.uk×2
• linkedin.com×2
• rcseng.ac.uk×2
• scarfree.org.uk×2
• x.com×2
• youtube.com×2

Linked from (4)

• hand-therapy.co.uk×2
• manchesterortho.co.uk×2
• mohammadwaseem.co.uk×2
• eliteoss.co.uk×1