flexscandinavia.se

HTML metadata

Technology

Server

openresty

jQuery

3.1.1 known XSS (<3.5)

Stack

ASP.NET

Analytics

• Google Tag Manager

Third-party hosts loaded (4)

• cdn.ywxi.net×1
• code.jquery.com×1
• www.facebook.com×1
• www.googletagmanager.com×1

Social

• youtube
• facebook
• instagram
• linkedin

Contact

Email

• info@flexscandinavia.se
• info@flexscandinavia.setelefon

Phone

• 054-522000

DNS records live

NS

• a.portsdns.se
• b.portsdns.net

MX

• 10 flexscandinavia-se.mail.protection.outlook.com

TXT

Show 4 TXT records

• uk6eedniup7ughqr7kkpfnnbe
• lime-domain-verification=855311D1EEFF76B
• vbsc6grnfgeiel19grs3ajgvje
• 1o8qg89imk2s5j7cp8vab449ha

Verified for

• Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://flexscandinavia.se/

present

• x-frame-options

findings

• missing HSTS
• missing Content Security Policy
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• youtube.com×1
• linkedin.com×1
• instagram.com×1
• facebook.com×1
• bwz.se×1
• adobe.com×1

Linked from (2)

• hammarogk.se×1
• egopowerplus.se×1