espap.gov.pt
HTML metadata
Technology
- Server
- Microsoft-IIS
- jQuery
- 3.6.0
- Stack
- ASP.NET
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- translate.googleapis.com×4
- fonts.googleapis.com×1
- translate.google.com×1
- www.google.com×1
Social
Contact
DNS records live
- NS
-
- ns.min-financas.pt
- ns02.fccn.pt
- ns03.fccn.pt
- MX
-
- 10 espap-gov-pt.mail.protection.outlook.com
- TXT
-
_9o8lwsw3r7zso5aqv090ye1uv8vu7ma_bzftwqb14ic6md07fstm0qlm5ju03be
- Verified for
-
- Apple
- Dynatrace
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 ip4:185.32.36.32/28 ip4:194.110.76.212 ip4:148.139.0.2 ip4:148.139.1.2 ip6:2a04:53c0:80:4::/64 include:spf.protection.outlook.com include:spf.emailsignatures365.com a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; pct=100; ruf=mailto:dmarc_ruf@espap.gov.pt; rua=mailto:dmarc_rua@espap.gov.pt; adkim=r; aspf=rpolicy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8XqALderh42t3vozXg0tpH2FIzwJR5zNzX97X6wQurpXvoebQMRNeYWHv0y1LmCndBJXN37ToX6SgcgC1vM… - selector2:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDn4gOL8l4VBX+UYyqtmBr+xuDitfcIshF7F1CZ+T1nsUAoigdjqr1vg4yICzhbyMIaqi04Ldycj5zBHO2lkU…
selectors probed - selector1:
Certificate (current)
Sectigo Public Server Authentication CA OV R36
Expires in 126 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://*.google-analytics.com https://www.googletagservices.com https://www.gstatic.com https://www.youtube.com https://translate.google.com https://translate.googleapis.com https://translate-pa.googleapis.com https://remote.captcha.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.gstatic.com https://translate.googleapis.com; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: https://*.espap.gov.pt https://*.service-now.com https://*.gstatic.com https://*.ytimg.com https://*.google.com https://*.google-analytics.com https://www.googletagmanager.com https://translate.googleapis.com; connect-src 'self' https://www.google-analytics.com https://*.google-analytics.com https://www.googletagmanager.com https://www.googletagservices.com https://translate.googleapis.com https://translate-pa.googleapis.com https://*.goog
Links to (18)
- b2ap.gov.pt×1
- bep.gov.pt×1
- captcha.org×1
- espap.pt×1
- feap.gov.pt×1
- geadap.gov.pt×1
- gerall.pt×1
- igcp.pt×1
- instagram.com×1
- linkedin.com×1
- pec.gov.pt×1
- recuperarportugal.gov.pt×1
- saf.gov.pt×1
- sigo.gov.pt×1
- sigoraa.gov.pt×1
- sigoram.gov.pt×1
- x.com×1
- youtube.com×1
Linked from (3)
- geadap.gov.pt×1
- espap.pt×1
- anogov.com×1