ctco.es

HTML metadata

Technology

Server

nginx

Social widgets

• Vimeo Embed

Third-party hosts loaded (1)

• player.vimeo.com×2

Social

• facebook

Contact

Email

• ctco@ctco.es

Phone

• 600 16 90 81
• 957 35 41 37

DNS records live

NS

• ns.ctco.es
• ns1.hornetdmarc.com
• ns2.hornetdmarc.com

MX

• 1 mx01.hornetsecurity.com
• 20 mx02.hornetsecurity.com
• 30 mx03.hornetsecurity.com
• 40 mx04.hornetsecurity.com
• 50 ctco-es.mail.protection.outlook.com

TXT

• MS=ms31968606

Email authentication strong

SPF

v=spf1 include:spf.hornetsecurity.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:a.chhr73oe@reports.hornetdmarc.com

policy: quarantine

DKIM

• default: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAIL7VL10gAnTh7FG6l/SWd/vMXjtvQi8/gCwOElu1ukFzwH7ifRNCp1zN0PH/NkRgZNm6WaTCvMBHxNmsTj+sELLbJ…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvPfMYGCA2XaKqltLa7I4efDbv3LpUDZDl0QBycG/iDyBuUvabGV0zhwZ1qmyqYaa4XjGIJNf9LUpzfIK5…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTsxJPwt4gG3fXpMemqXvAPIa5RKY6ONzhT5T/H7Y/o1M4NS7wpHIQjS+2fgqFUtg2byc75tlFXKj7VKBc…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://ctco.es/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (15)

• ctagr.com×2
• ctal.es×2
• cthu.es×2
• ctja.es×2
• ctmam.es×2
• ctmcg.es×2
• eprinsa.es×2
• facebook.com×2
• lasepulvedana.es×2
• autocarescarrera.es×2
• autocaresfloreshnos.es×2
• autocaresramirez.es×2
• autocaressansebastian.es×2
• cmtbc.es×2
• consorciotransportes-sevilla.com×2

Linked from (7)

• ctagr.es×2
• cmtbc.es×2
• cthu.es×2
• ctja.es×2
• ctal.es×2
• ctmcg.es×2
• estacionautobusescordoba.es×1