ilva.dk

HTML metadata

Technology

CDN

Cloudflare

CMS

Nuxt

JS framework

Vue

Analytics

• Cloudflare Insights
• Google Tag Manager

Third-party hosts loaded (4)

• www.googletagmanager.com×2
• dev.visualwebsiteoptimizer.com×1
• js.klarna.com×1
• static.cloudflareinsights.com×1

Social

• facebook
• instagram
• tiktok
• linkedin

DNS records live

NS

• joaquin.ns.cloudflare.com
• norah.ns.cloudflare.com

MX

• 10 mail.ilva.net

TXT

• klaviyo-site-verification=TyqiLj
• atlassian-sending-domain-verification=83db9167-4ca9-413e-98e5-789dda6f9644
• duo_sso_verification=MbTQSDZjoGvYQ08ukmYBssvhBQaDZJ3RAZeUjAj4bCa7zO7g0j7UKGnUiwoZOWs7

Verified for

• Anthropic
• Atlassian
• GlobalSign
• Google
• Meta
• Microsoft 365

Email authentication strong

SPF

v=spf1 redirect=ilva.dk.hosted.spf-report.com

missing all

DMARC

v=DMARC1;p=reject;pct=100;fo=1;rua=mailto:e708da3d@mxtoolbox.dmarc-report.com;ruf=mailto:e708da3d@forensics.dmarc-report.com

policy: reject (enforced)

DKIM

• k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://ilva.dk/

present

• x-content-type-options

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (9)

• trustpilot.com×1
• tiktok.com×1
• playable.com×1
• pinterest.dk×1
• linkedin.com×1
• instagram.com×1
• findsmiley.dk×1
• facebook.com×1
• emaerket.dk×1

Linked from (1)

• guldborgsundcentret.dk×1