cba-consulting.it

HTML metadata

Technology

Server

Apache

jQuery

2.2.3 known XSS (<3.5)

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (5)

• fonts.googleapis.com×3
• cdnjs.cloudflare.com×1
• maps.google.com×1
• www.gattei.com×1
• www.googletagmanager.com×1

Social

• instagram
• linkedin
• facebook

Contact

Email

• info@cba-consulting.it

Phone

• +39 0321 640021
• 01368770036

DNS records live

NS

• ns1.v00tt8-g7int.sphostserver.com
• ns2.v00tt8-g7int.sphostserver.com

MX

• 0 esva.soluzioneit.com
• 10 cbaconsulting-it0i.mail.protection.outlook.com

Verified for

• Microsoft 365

Email authentication weak

SPF

v=spf1 +mx +a +mx:esva.soluzioneit.com +ip4:46.254.38.211 +include:spf.protection.outlook.com +include:spf.bbs.cba-consulting.it -all

strict (-all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jifr9flE9UaxlxdUMekzV2abAe5dcgbO7SbS8WBv185k6Jcs7cVPSK5dQA7bGBBLvSsaRBNcCudIl…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://cba-consulting.it/it/index.php

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• swingcommunication.it×1
• linkedin.com×1
• instagram.com×1
• facebook.com×1

Linked from (1)

• maybeecomunicazione.it×1