lacsc.be
lacsc.be
HTML metadata
Technology
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (6)
- kendo.cdn.telerik.com×48
- apps.acv-csc.be×4
- www.acvcsc.be×2
- www.diecsc.be×2
- www.hetacv.be×2
- www.googletagmanager.com×1
DNS records live
- NS
-
- ns1.thednscompany.com
- ns2.thednscompany.com
- ns3.thednscompany.com
- Verified for
-
- GlobalSign
- Meta
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
GlobalSign RSA OV SSL CA 2018
Expires in 227 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' *.googleapis.com *.gstatic.com www.google.com apis.google.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js 'unsafe-inline' 'unsafe-eval' www.acvcsc.be www.diecsc.be www.hetacv.be www.lacsc.be *.acvcsc.be *.diecsc.be *.hetacv.be *.lacsc.be apps.acv-csc.be https://chat.smartcall.cc *.cloudflare.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ *.google-analytics.com *.analytics.google.com *.googletagmanager.com https://dec.azureedge.net/ munchkin.marketo.net *.eloqua.com js.hs-scripts.com js.hs-analytics.net *.en25.com cdn.ampproject.org *.jquery.com kendo.cdn.telerik.com *.hotjar.com ws://*.hotjar.com surfly.com https://*.talkjs.com https://unpkg.com app.webinargeek.com malong.webinargeek.com embed.webinargeek.com web-chat.nativec- strict-transport-security
max-age=31536000; includeSubDomains