hildinglinnqvist.se

HTML metadata

Technology

Server

openresty

jQuery

3.2.1 known XSS (<3.5)

Third-party hosts loaded (1)

• code.jquery.com×1

Contact

Email

• visning@hildinglinnqvist.se
• nyhetsbrev@hildinglinnqvist.se

DNS records live

NS

• ns1.loopiagroup.com
• ns2.loopiagroup.com

MX

• 10 mail.hildinglinnqvist.se
• 20 mail2.hildinglinnqvist.se

Email authentication weak

SPF

not published

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• mail: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7puyuRXMlJfHhUSli0fJWWwx1Qc2HrAAi2tJ2D5xh4UxTm41JZdIZhcZxJmu4qXnZVl5FL9sNmQAh…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://hildinglinnqvist.se/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (5)

• sigtunastiftelsen.se×1
• marabouparken.se×1
• enjoyscandinavianart.com×1
• elis-burrau.com×1
• editsihlberg.com×1

Linked from (2)

• omkonst.com×1
• omkonst.se×1