glr-gruppe.de

HTML metadata

Technology

Server

nginx

jQuery

1.12.4 known XSS (<3.5)

Contact

Phone

• +49381405780

Registration

Updated

2015-02-05

Name servers

• ns1.first-ns.de.
• robotns2.second-ns.de.
• robotns3.second-ns.com.

DNS records live

NS

• ns1.first-ns.de
• robotns2.second-ns.de
• robotns3.second-ns.com

MX

• 10 mx2.edv-gruppe.de

TXT

• wrike-verification=NTQ2NTEwMzpmM2UxM2ZiMTdjZGUyN2QyNDYwZjYyMzJhZDZkN2I2Mzk2Zjc3NjJhOTBlNzg2OWVkMzkwYmM4Y2UyMjA4MTBj
• Foxit-domain-verification=7952d43be61826b410385bf622df6a3e

Verified for

• Apple
• Canva

Email authentication strong

SPF

v=spf1 mx include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine;

policy: quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPmtLf3YUhk+deLVMCpfBfQY8VD7ggngWWs2pO4zyELHbO8+aCSuVJSFJ7GXxE4KDdMzp+raDU8jyT…
• dkim: v=DKIM1;k=rsa;t=s;s=email;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy96JWE+659gXxKVSWRpR424wEgd3jXYJajC/YCe50DVAPPftIc3V1PyaA9/md5HQf/pF…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.glr-gruppe.de/

present

• strict-transport-security

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• wago.com×1
• siemens.com×1
• inga-hameln.de×1
• deos-ag.com×1

Linked from (1)

• rostocker-handballclub.de×1