kokstweewielers.nl

HTML metadata

Technology

Server

Apache

CMS

Gatsby

jQuery

1.7.1 known XSS (<3.5)

Stack

PHP

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• cdn1.crossretail.nl×4
• www.googletagmanager.com×1

Social

• facebook
• instagram

Contact

Phone

• 0226411137

DNS records live

NS

• ns1.i-aspect-infra.nl
• ns2.i-aspect-infra.nl

MX

• 10 kokstweewielers-nl.mail.protection.outlook.com

Verified for

• Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com include:spf.crossretail.nl ip4:157.245.69.253 a mx ~all

softfail (~all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtn/bL7PVj0XGD6A9YKaqUOX6YrW9X46AYUq4x68XwjCue7fuXhTvwOVpM/ZP1ERm0dM9OYj1HH1phN…
• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttmM+BXNAgJB7c1gSFr47LKYQ2De8lj+8GOZ3sbpKO8vkSwz9Tj0q/ROeGrE5j9lnCSS9ZkKU3GQ3H…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhjRFoL8l0vOw3bGxKPXPnanD/dwN3Qu8OBl5BIaEP++EVs6ObljVqhuxHToiczUV5qDUpQK/fBVY1…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://kokstweewielers.nl/

present

• strict-transport-security
• content-security-policy
• x-frame-options

findings

• short HSTS max-age
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• teamsportservice.nl×1
• instagram.com×1
• i-aspect.com×1
• facebook.com×1

Linked from (1)

• jazzinaartswoud.nl×1