creditmountain.co

HTML metadata

Technology

CDN

Cloudflare

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• cdn.prod.website-files.com×63
• d3e54v103j8qbb.cloudfront.net×1
• www.googletagmanager.com×1

DNS records live

NS

• ns-106.awsdns-13.com
• ns-1440.awsdns-52.org
• ns-1628.awsdns-11.co.uk
• ns-637.awsdns-15.net

MX

Show 7 MX records

• 0 mx1-us1.ppe-hosted.com
• 1 mx2-us1.ppe-hosted.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 2 aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

• asn-verification=6f98d513b1913d9491245c55c73c386012111a83456153cee4573018bdb1695f
• google-gws-recovery-domain-verification=46239468

Email authentication strong

SPF

v=spf1 a:dispatch-us.ppe-hosted.com include:_spf.google.com include:mailgun.org ~all

softfail (~all)

DMARC

v=DMARC1;p=reject;rua=mailto:security@creditmountain.co;ruf=mailto:security@creditmountain.co;rf=afrf;pct=100

policy: reject (enforced)

DKIM

• google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrEk+SZTqggsz1RzGmmXLynh14p6zgYQ634BAp0DK2ol0psGfPryr9ob9OfcH6+3Ee7psD4kEAfSxoQPALRv…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3brOoLKRQSxSHkS6AVlzaxcFe/KQWt5s6R460RdrGXMtrC2VEpcfNZhLO3FS24pK5MgtDDAYkWYjDJJ/6…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxjYdAzm7b76LdJicE3N7X0Go25RnNuHw12XQ24kkJ/u7iqBHHwFB+csUvQmZaorbrjBMFsbqX2SsAN8Z6…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.creditmountain.co/

present

• strict-transport-security
• content-security-policy
• x-frame-options

findings

• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (2)

• calendly.com×2
• creditmountain.org×2

Linked from (2)

• curql.com×1
• creditmountain.org×1