construx.eu

HTML metadata

Technology

Server

nginx

CMS

Joomla

Social widgets

• Vimeo Embed

Third-party hosts loaded (1)

• player.vimeo.com×1

Social

• facebook
• instagram
• linkedin

DNS records live

NS

• ns1.european-server.eu
• ns3.european-server.com
• ns4.european-server.com

MX

• 10 construx-eu.mail.protection.outlook.com

Verified for

• Google
• Meta

Email authentication strong

SPF

v=spf1 a mx include:sendgrid.net include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPuDc9Z3pADUuQzZvmrs1SIWzP9t+Xz5PBiW3gtb3Z4UPLQmN6n4P0TPGImcfR61APp1KPlo+7EPHkqZL77h…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsY596UX5SRHDSm/RsDW5lJUlMsjOGud6BKDb3NYOQBVJ+Hm74YYSeTPzuQco8nx0B4yiVQa3qYEbd7XQuP…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJG+iDgo7AaspO6qEfnRZ3j2UC6LJi+RHwM65qRdKLS4A8fVKG9l7e8BH1L+ScLrSwOvXJbFr16gtrIwpieN5PKT…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.construx.eu/en/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• CSP allows unsafe inline scripts/styles
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• cbe-tunnels.com×2
• acimex.net×2
• facebook.com×2
• instagram.com×2
• linkedin.com×2
• leadinfo.com×2

Linked from (2)

• cemento-hormigon.com×2
• metalen-vaas.nl×1