fischer-rista.ch

HTML metadata

Technology

Server

Apache

jQuery

2.2.4 known XSS (<3.5)

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• js.hcaptcha.com×1
• www.googletagmanager.com×1

Social

• linkedin
• youtube

Contact

Phone

• +41 62 288 15 72
• +41 79 691 15 95
• +41 62 288 15 68
• 0041622881566

DNS records live

NS

• ns.hostpoint.ch
• ns2.hostpoint.ch
• ns3.hostpoint.ch

MX

• 0 fischerrista-ch01i.mail.protection.outlook.com

TXT

• YGczrLedad5zuKvJvWoJlmN7mB5+3SZR9xt4+Zd22iw3KsrJ95KLnZkZGi55H5TRKm4j0gF6RwVHSTiqgu2rYw==
• knowbe4-site-verification=64510e0bb9e3bf10b598db3d03f19e3d

Email authentication partial

SPF

v=spf1 mx include:spf.protection.outlook.com include:_spf.rexx-systems.com include:spf.nl2go.com ip4:45.129.181.134/32 ip4:212.243.136.82 ip4:212.243.136.84 ip4:212.243.136.85 ip4:194.59.206.131 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; sp=reject; rua=mailto:admin@fischer-rista.ch; rf=afrf; pct=100; ri=86400

policy: none (monitoring only) · sp=reject

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20L2yjFVPF9rFET1rIp+H2Nb0D5WXgKEnTSJdH8p5hrd9h57Dr+2vxMMxl1izR7FZh/TGf6TQzp9Qc…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.fischer-rista.ch/

present

• x-content-type-options

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• fir-group.ch×1
• fischer-reinach.com×1
• linkedin.com×1
• youtube.com×1

Linked from (2)

• sshv.ch×1
• fischer-reinach.com×1