gsc-europa.eu

HTML metadata

Technology

Server

Apache

CMS

Drupal

Fonts

• Font Awesome

Social widgets

• YouTube Embed

Third-party hosts loaded (3)

• img.youtube.com×1
• use.fontawesome.com×1
• www.youtube.com×1

Social

• twitter
• facebook
• instagram
• linkedin
• youtube

Contact

Email

• helpdesk@gsc-europa.eu

DNS records live

NS

• ns-221-c.gandi.net
• ns-234-a.gandi.net
• ns-245-b.gandi.net

MX

• 10 mx03.puc.rediris.es
• 10 mx04.puc.rediris.es
• 50 gsceuropa-eu0i.mail.protection.outlook.com

TXT

• MS=11292022

Verified for

• Microsoft 365

Email authentication partial

SPF

v=spf1 a:gsc-europa.eu ip4:130.206.90.69 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:postmaster@gsc-europa.eu; ruf=mailto:postmaster@gsc-europa.eu; fo=1

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyGFrO1481JoT9mrB7DKnlghTexRPVyKf0ihwRbKZpjr0Ukt0dNbSGozHIVHnj+eR+b9oOIy8KPCsy…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.gsc-europa.eu/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• CSP allows unsafe inline scripts/styles
• weak frame protection
• missing Permissions Policy

Links to (8)

• youtube.com×2
• euagencies.eu×2
• europa.eu×2
• facebook.com×2
• instagram.com×2
• linkedin.com×2
• slideshare.net×2
• twitter.com×2

Linked from (2)

• mobility-alliance.org×2
• maas-alliance.eu×1