ecsa.eu

HTML metadata

Technology

Server

Apache

CMS

WordPress

jQuery

3.7.1

Stack

PHP

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• www.googletagmanager.com×2
• widget.taggbox.com×1

Social

• twitter
• youtube
• linkedin
• pinterest

Contact

Email

• douwe.vandermeulen@ecsa.eu
• jaime.campos@ecsa.eu
• lasse.qvist@ecsa.eu

Phone

• 101765101765
• 1984387411165
• 101148101148
• 101749101749
• 117608117608

DNS records live

NS

• ns-159-b.gandi.net
• ns-228-a.gandi.net
• ns-44-c.gandi.net

MX

• 0 ecsa-eu.mail.protection.outlook.com

TXT

• bw=EToeqINKz8qQtnCQO6UO4vUttrSjTAfN1xwO3uLP3ykF

Email authentication strong

SPF

v=spf1 a ip4:149.5.24.113 include:servers.mcsv.net include:spf.protection.outlook.com include:mailgun.org -all

strict (-all)

DMARC

v=DMARC1;p=reject;rua=mailto:dmarc@cerrf0ts.uriports.com;ruf=mailto:dmarc@cerrf0ts.uriports.com;fo=1:d:s

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41kn8fkXy76nF3rOQhKRynkZgXj5wuBrLlNONaiiwuAoDo7mxsuUIyx1555A9QoUf0rUf6LbU+JLEi…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://ecsa.eu/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (11)

• youtube.com×1
• yahoo.com×1
• xing.com×1
• twitter.com×1
• pinterest.com×1
• live.com×1
• linkedin.com×1
• google.com×1
• facebook.com×1
• eventbrite.com×1
• aol.com×1

Linked from (1)

• economiadelmare.org×1