flowty.io

HTML metadata

Technology

CDN

Amazon CloudFront

Server

AmazonS3

CMS

Gatsby

Fonts

• Google Fonts

Third-party hosts loaded (2)

• fonts.googleapis.com×2
• fonts.gstatic.com×1

DNS records live

NS

• ns-cloud-a1.googledomains.com
• ns-cloud-a2.googledomains.com
• ns-cloud-a3.googledomains.com
• ns-cloud-a4.googledomains.com

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

• 336ab6aa-35f6-4c4c-83ae-e38e0cece558=b8fe0a250c24bea0624472527367a182d88a02880aa07654c2ac19108726813f
• ba1d074e-f9c0-4167-8498-e7d7c068331f=becdf37cb071d33e7127d6dbe04e4dee3a6822b4d4267305f9a259a0567ae0a5

Email authentication weak

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

not published

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrN14CE278DV4kk8BotcGZn5PFQU/sSWg7pzoIPVFLfgwWDCzI/1GyL6Ug2iRwAGI4Xhdj8WiFWpvW…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyl6DxppEj3EnkAx2KUKyvU03Ab6Q8NfZxr+pIMrIkpDfD5XzQ16iVwh8VTh7sZo5tz31y6pC8Dl2pjL4qv…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WHQYuj//cBQexPnXaD9ecEVFOEItuLDf22TWmiBEttsYyN4aPZUCLjrPxlVYxTuEcUnFpFbOF3dKJTrdz…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.flowty.io

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Linked from (1)

• matrixmarket.xyz×2