juspay.io

HTML metadata

Technology

CDN

Amazon CloudFront

Server

AmazonS3

Third-party hosts loaded (1)

• cdn.sanity.io×1

Social

• linkedin
• twitter

DNS records live

NS

• ns-1394.awsdns-46.org
• ns-1872.awsdns-42.co.uk
• ns-438.awsdns-54.com
• ns-593.awsdns-10.net

MX

• 1 smtp.google.com

TXT

• google-site-verification=kz7iYorYl--67icI6PxyPg8jpWbqpJgN9MoKVDY5WzU
• kqnhnwqxvn

Email authentication partial

SPF

v=spf1 include:_spf.google.com include:amazonses.com include:spf.zoho.com include:transmail.net include:spf.zohomail360.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCQu2/HxsZ74eKTgWW3Io1KFUXAySe4y/uub18sAcTUALc6y0i9LPDVay6kAEzNzdMkgZC8/1j0IP0PE5i61C…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://juspay.io/europe

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing Permissions Policy

Links to (4)

• hyperswitch.io×1
• linkedin.com×1
• panaceainfosec.com×1
• twitter.com×1

Linked from (3)

• mobcoder.com×1
• hyperswitch.io×1
• karnstack.com×1