ctime.it

HTML metadata

Technology

Server

nginx

CMS

WordPress 7.0

jQuery

1.1.4 known XSS (<3.5)

Fonts

• Google Fonts

Third-party hosts loaded (4)

• fonts.googleapis.com×3
• platform-api.sharethis.com×2
• gmpg.org×1
• www.privacylab.it×1

Contact

Phone

• 02214160125
• +39 0331 985432
• +39 0331 995627

DNS records live

NS

• ns.abdns.biz
• ns.abdns.eu
• ns.abdns.info

MX

• 0 esva.ctime.it

TXT

• 3p1-7b2-5fa
• MS=6C82A8F1711298D2E9AF1A589DE01085DB3AF447
• v=DMARC1; p=none; sp=none; rf=afrf; pct=100; ri=68400 _dmarc

Verified for

• Google
• OpenAI

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:_spf.odoo.com ip4:109.233.123.123 -all

strict (-all)

DMARC

v=DMARC1; p=none; sp=none; adkim=r; aspf=r

policy: none (monitoring only) · sp=none

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC9pDJdum3YxhKPB4d/sj+C1Lnt4G6gP/+ScdKfrxiVrJbOG7MpQlACB92+ar6iFsL9PGGlFstLqJFMCslJSG…
• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC36JR+ayyk0rqHsW0+IpVmExEu8erEI1kCO4BC2Puht/SXouUJqogZw/seGmFEevEW7r7KCv67nsLR3SnVsq…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://ctime.it/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (2)

• teamviewer.com×1
• privacylab.it×1

Linked from (2)

• sviluppoweb-ctime.it×1
• glpsolution.com×1