headz.com.pl
headz.com.pl
HTML metadata
Technology
- Server
- IdeaWebServer
- CMS
- WordPress
- jQuery
- 3.7.1
- Fonts
-
- Font Awesome
- Google Fonts
Third-party hosts loaded (3)
- use.fontawesome.com×3
- fonts.googleapis.com×2
- cdnjs.cloudflare.com×1
Social
Contact
DNS records live
- NS
-
- ns1.strefa.pl
- ns2.strefa.pl
- ns3.strefa.pl
- MX
-
- 10 headz-com-pl.mail.protection.outlook.com
- Verified for
-
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; fo=1; adkim=s; aspf=s;policy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjc81Qd7ViDQMf3PDPslX7PrOmn/YojepkRLhevFjqL44Qfzq28lIpScs5cIZbnyRhn+KMijOgGbIa… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqZtcRhJ7oiYCcpKIkh9p9+9H4PQapxcGDG2ssRYf8CZV7A8DoPu6QXuYo9ixv9YH/BHxEDjXtp1sS…
selectors probed - selector1:
Certificate (current)
home pl DV TLS G2 R35 CA
Expires in 278 days
HTTP security headers
- present
-
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- missing HSTS
- missing Content Security Policy
Header values
- referrer-policy
unsafe-url- x-frame-options
SAMEORIGIN- permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")- x-content-type-options
nosniff