gvsconsulting.ch

HTML metadata

Technology

Server

Pepyaka

CMS

Wix

Third-party hosts loaded (4)

• static.wixstatic.com×30
• static.parastorage.com×10
• siteassets.parastorage.com×4
• browser.sentry-cdn.com×1

Social

• instagram
• linkedin
• facebook

Contact

Phone

• 91 866 15 71

DNS records live

NS

• ns1.wix.com
• ns2.wix.com

MX

• 10 aspmx.l.google.com
• 20 alt1.aspmx.l.google.com
• 30 alt2.aspmx.l.google.com
• 40 aspmx2.googlemail.com
• 50 aspmx3.googlemail.com

Email authentication partial

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email

policy: none (monitoring only)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLKH4wQ5ozNm5Ki47FEP3a8q3aD5ddqTWV4HCqEbFG0fvJKV8TtsEA1bJrbHcVGXVFxZHo0653wmAzNQjy…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDE5qQHGTv4E8C+3oYKH3LtEqqCh7CHF6wxK6dVlLTFxfLUCSxq0j809fZu5LFJjVH4bQS9VTCIXOWyPqdwdAtVU/…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.gvsconsulting.ch/

present

• strict-transport-security
• x-content-type-options

findings

• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (15)

• usi.ch×1
• timexgroup.com×1
• luganolac.ch×1
• lugano.ch×1
• linkedin.com×1
• kering.com×1
• kellyservices.com×1
• instagram.com×1
• hr-ticino.ch×1
• forestbathing.net×1
• faulhaber.com×1
• facebook.com×1
• coop-ssl.ch×1
• bancastato.ch×1
• aiti4welfare.ch×1

Linked from (1)

• aiti4csr.ch×1