jupiterinletcolony.gov

HTML metadata

Technology

CDN

Cloudflare

jQuery

3.7.1

Stack

ASP.NET

Third-party hosts loaded (2)

• www.jupiterinletcolony.gov×29
• docaccess.com×1

Social

• facebook
• youtube

Contact

Phone

• (561)%20746-3787

DNS records live

NS

• ns15.domaincontrol.com
• ns16.domaincontrol.com

MX

• 10 d349863a.ess.barracudanetworks.com
• 10 d349863b.ess.barracudanetworks.com

TXT

• v=verifydomain MS=4494680
• MS=2EF54450EAB37F4683AEF558A3A970FA47C13110

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com ip4:50.250.66.25 ip4:65.43.222.17 -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; fo=1; rua=mailto:dmarc_agg@vali.email,mailto:rua+jupiterinletcolony.gov@dmarc.barracudanetworks.com; ruf=mailto:ruf+jupiterinletcolony.gov@dmarc.barracudanetworks.com

policy: quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycB3VsOWssHDVNSOuJo7t32LgiLtXpP+N2cxIvDLcYmDDPLygOlmGws580mWQyuj9U8yJqEx8UVjHB…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.jupiterinletcolony.gov

present

• content-security-policy
• x-content-type-options

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• youtube.com×1
• wordpress.com×1
• municode.com×1
• facebook.com×1
• constantcontact.com×1
• civicplus.com×1