kusszo.ch

HTML metadata

Technology

Server

LiteSpeed

PHP

8.2.31 security-only

jQuery

3.3.1 known XSS (<3.5)

Third-party hosts loaded (3)

• ajax.googleapis.com×1
• js.createsend1.com×1
• stackpath.bootstrapcdn.com×1

Contact

Email

• schulleitung@kusszo.ch

Phone

• +41449424237

DNS records live

NS

• ns95.tophost.ch
• ns96.tophost.ch

MX

• 0 kusszo-ch.mail.protection.outlook.com

TXT

• jamf-site-verification=UyEo0Kr1P0SzknVGgE5LLg

Verified for

• Apple

Email authentication partial

SPF

v=spf1 ip4:193.33.128.192 include:_spf.tophost.ch include:_spf.createsend.com include:relay.mailchannels.net ip4:193.33.128.193 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07i6/UKXSbayh42c8n8L0gzq7sBmwEESVOvbKe6gN22vxHV3YtWK7KM8vjEJgvCvBZHH0nk3lC4/Hv…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtMeh84Z3XkZANF7ByvtKPqBZ2ZGXljvKHlEngOryQb237WrbVocq8jRFsCAjDGynNFjGeHBCtRkZYglZl…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCeBzVE24vqo67hLZ67FDwRhe/w2O8MvoBMoTsRu3NWdkIxqAiL1tqyX/sy/7AxgWWVNtIcKakCg7zuG9aL2pHnuc…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.kusszo.ch/

present

• x-frame-options

findings

• missing HSTS
• missing Content Security Policy
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• swissolympic.ch×1
• sekuster.ch×1
• google.ch×1

Linked from (3)

• mzol.ch×1
• anurabischofberger.ch×1
• sportzentrum-zurich.ch×1