gfg.be

HTML metadata

Technology

Server

nginx

CMS

Gatsby

Stack

Django

Analytics

• Plausible

Third-party hosts loaded (1)

• plausible.io×1

DNS records live

NS

• ns1.combell.eu
• ns3.combell.net
• ns4.combell.net

MX

• 10 mx-01-eu-central-1.prod.hydra.sophos.com
• 20 mx-02-eu-central-1.prod.hydra.sophos.com

TXT

• sophos-domain-verification=03d5a95983f8f152b780e5d16102f18818ea307e6a1989aa5515a4812bf70e91
• sophos-domain-verification=bf6b3cc20445fd4c20a5eaf9e91dd62c3af20c0e

Verified for

• Microsoft 365

Email authentication strong

SPF

v=spf1 redirect=gfg.be.spf.sophosdmarc.net

missing all

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:a.bj2wk0gn@reports.sophosdmarc.net

policy: quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+OaLj2SmrUykF0mcpy8PyrUTpGeU/d+PsteNLGiK49jokzlobhj4GmXDr9okLwD4A/4rLsmr6cDGNcWcqXy…
• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdoL1uASQwB/e7TE8+nVYWbcCzhGKShMbfM54Sy1+VXHNt2cb7vdSgiBAWKIH7v4RAxNfJTpEMveCN8DzVvD…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://gfg.be/nl-be/

present

• strict-transport-security
• x-frame-options
• x-content-type-options
• referrer-policy
• cross-origin-opener-policy

findings

• missing Content Security Policy
• weak frame protection
• missing Permissions Policy

Linked from (7)

• tomeeto.be×1
• emotionplanet.com×1
• thecarecollective.be×1
• btstravel.be×1
• btsbusinesstravel.be×1
• scancoming.com×1
• joker.be×1