gifas.ch

HTML metadata

Technology

Server

nginx

CMS

Gatsby

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• www.googletagmanager.com×2
• cdnjs.cloudflare.com×1
• consent.cookiefirst.com×1

Social

• facebook
• instagram
• linkedin
• youtube

Contact

Email

• info@gifas.ch
• rheineckswitzerlandinfo@gifas.ch

Phone

• 00718864444

DNS records live

NS

• ns.inwx.ch
• ns2.inwx.de
• ns3.inwx.eu

MX

• 0 gifas-ch.mail.protection.outlook.com

TXT

• 9fl7vboonsj1078mipba6kuo1c
• npik0uqih4ilqskial86tv8f2r
• _7hq1fj4qlsl4lbj8kevv4awvfr761v9

Verified for

• Apple
• Atlassian
• Brevo

Email authentication partial

SPF

v=spf1 mx ip4:194.209.36.160/28 include:spf.crsend.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDVo50CHcYSr/m6lY7NzU4Jz7HW0UBoSUynbTq26pVrMyREOa5niyUlY/X7Q2zk7mZvJz4LpeFMj7sBOjjDQh…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.gifas.ch/en/

present

• strict-transport-security
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing Content Security Policy
• weak frame protection
• missing Permissions Policy

Links to (8)

• youtube.com×1
• slg.ch×1
• polynorm.ch×1
• madeinsg.ch×1
• linkedin.com×1
• instagram.com×1
• gifas-electric.com×1
• facebook.com×1

Linked from (1)

• galledia-rheintal.ch×1