horego.ch

HTML metadata

Technology

CDN

Amazon CloudFront

jQuery

3.4.1 known XSS (<3.5)

Analytics

• Google Tag Manager

Third-party hosts loaded (1)

• www.googletagmanager.com×1

Contact

Phone

• +41 44 366 50 50

DNS records live

NS

• ns-111.awsdns-13.com
• ns-1511.awsdns-60.org
• ns-1701.awsdns-20.co.uk
• ns-843.awsdns-41.net

MX

• 0 horego-ch.mail.protection.outlook.com

TXT

• j9rbrfl7po2cbuttj4u3ca1r2l

Email authentication partial

SPF

v=spf1 mx ip4:37.128.180.26 ip4:83.150.2.75 ip4:46.140.29.62 ip4:195.65.13.13 include:spf.creanet.ch include:cemsc.net include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCmN95ZZ6X+1HZ95ML/m24u4VzRcXFo44XjXekzwWNBbjrep7lMlmIC7rsTm2Pxt20mrfsGry5Hdf0WCTLMoA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.horego.ch/home

present

• strict-transport-security
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing Content Security Policy
• missing Permissions Policy

Links to (12)

• waldis-berry.ch×1
• teamviewer.com×1
• plafondnova.ch×1
• mabalux.ch×1
• kaspar-elektroag.ch×1
• hannes-flueckiger.ch×1
• gunzwiler-destillate.ch×1
• gediegen.ch×1
• creanet.ch×1
• businessfabrik.ch×1
• benetz.ch×1
• antrimon.com×1

Linked from (1)

• hotelfinance.ch×1