iva.se
HTML metadata
Technology
- CDN
- Cloudflare
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- cxppusa1formui01cdnsa01-endpoint.azureedge.net×1
- www.googletagmanager.com×1
Social
DNS records live
- NS
-
- ns1.loopiagroup.com
- ns2.loopiagroup.com
- MX
-
- 10 iva-se.mail.protection.outlook.com
- TXT
-
Show 11 TXT records
d365mktkey=3bkyypmmp9oho0zq2sskbrhpmd365mktkey=6takbv9lpucuhgyxm9dwf1abnd365mktkey=3bkyypmmp9oho0zq2sskbrhpmapple-domain-verification=JdbSUtBPq2WcV72uMS=A88822A88EF1C96DD5A68D40E0E5B88B22C30454openai-domain-verification=dv-2zPBtdhGdgxHu4uhTzxuJJp4anthropic-domain-verification-t40dvc=Ot2BWdxf2w9YonvhN3jx0UNa2perplexity-ai-domain-verification-nht0yp=XgWMj4hjXaVf2TjW7Ijh3vV0mgoogle-site-verification=MJVw_Ex5QbooN27mTWNJM6kMVN2swgNrBBBp0sXjKh8l8NYNckppkiGlTWCQv9JszL/jh9kcuJxOcPKHiZ7WOagpnzqf6dgkbN5FFLPmj9QmzxbCizLgsgMty2KP2+CbQ==xiumXuWqlpbG/yg9U7IR/D2KuJfI0e59SMj8V3X18FfRanILb6b9hCLLPgBHlSkBqgzWDztK2Ay6ww5fiRIcpw==
Email authentication strong
- SPF
-
v=spf1 mx a ip4:213.132.106.224/27 include:spf.multinet.com include:_spf.anpdm.com include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; pct=25;rua=mailto:dmarc@iva.sepolicy: reject (enforced) · pct=25 - DKIM
-
Show 4 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCWsb7cEfGnS0VyxRIJJm5QNMl6NWMXDwWOG/arg7aeoHo+s7dV+GGLRRE2bk0IPz/eZEleB9mT+Zx7s4WCrZ… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pIthDp4mYMW7zpgoWdo6Q3eXGgbI1U4pO7ULHJxVIznGHrdvK1jvWl37pVhr8AQALP62a1TZBRg6nW67A… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bA3xTxivq9Uf9E+Sxteg6roXb7DD1hYcYgGpMU6E9nMQtRFcj9W67ii2GWqNF9PSX0YRWZJvd337h1sY4…
selectors probed - selector1:
Certificate (current)
WE1
Expires in 62 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- permissions-policy
publickey-credentials-get=(), xr-spatial-tracking=(), screen-wake-lock=(), cross-origin-isolated=(), web-share=(), picture-in-picture=(), keyboard-map=(), encrypted-media=(), display-capture=(), usb=(), serial=(), payment=(), midi=(), microphone=(), magnetometer=(), geolocation=(), camera=(), fullscreen=(self "https://www.youtube.com/" "https://youtu.be/"), autoplay=(), accelerometer=()- x-content-type-options
nosniff- content-security-policy
script-src https://js.monitor.azure.com www.googleadservices.com googleads.g.doubleclick.net googlesyndication.com www.google.com googletagmanager.com 'unsafe-inline' 'unsafe-eval' 'nonce-0b3d2cdb-af2a-4661-b39c-c827da1c5548' 'self' consentcdn.cookiebot.com consent.cookiebot.com https://files.imbox.io https://apiv2.imbox.io analytics.tiktok.com tiktok.com/* connect.facebook.net mktdplp102cdn.azureedge.net cdn.jsdelivr.net https://cdn.jsdelivr.net/npm/bootstrap@5.2.3/dist/js/bootstrap.bundle.min.js https://cdn.jsdelivr.net/npm/feather-icons@4.29.0/dist/feather.min.js https://swedencentral-0.in.applicationinsights.azure.com https://cxppusa1formui01cdnsa01-endpoint.azureedge.net https://rdrect-eur1.mkt.dynamics.com/webtracking/WebTracking/WebTracking.bundle.js via.tt.se https://*.googletagmanager.com; frame-src https://consentcdn.cookiebot.com https://widget.imbox.io https://widget-launcher.imbox.io www.facebook.com c4bd428c44524aa8b3fca9112149ff83.svc.dynamics.com www.youtube.com player.- strict-transport-security
max-age=2592000