imc.or.at
imc.or.at
HTML metadata
Technology
- Server
- Apache
- CMS
- WordPress 6.9.4
- jQuery
- 3.7.1
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (2)
- www.youtube.com×6
- gmpg.org×1
Social
Contact
DNS records live
- NS
-
- ns5.kasserver.com
- ns6.kasserver.com
- MX
-
- 0 imc-or-at.mail.protection.outlook.com
- 1 5wknwjpvhpz5fexac6pe7b2xn-smtp-codetwo-online.mail.protection.outlook.com
Email authentication weak
- SPF
-
v=spf1 a:kasserver.com include:spf.protection.outlook.com ip4:85.13.143.168 -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 29 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- short HSTS max-age
- weak frame protection
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN, SAMEORIGIN- permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()- x-content-type-options
nosniff, nosniff- content-security-policy
upgrade-insecure-requests;, upgrade-insecure-requests;- strict-transport-security
max-age=0, max-age=63072000; includeSubDomains; preload- cross-origin-opener-policy
unsafe-none- cross-origin-embedder-policy
unsafe-none; report-to='default'- cross-origin-resource-policy
cross-origin
Links to (5)
- youtube.com×1
- youtu.be×1
- xing.com×1
- linkedin.com×1
- facebook.com×1