martinhicks.dev
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- AmazonS3
Third-party hosts loaded (7)
- lastfm.freetls.fastly.net×4
- bsky.app×1
- github.com×1
- hachyderm.io×1
- is1-ssl.mzstatic.com×1
- twitter.com×1
- www.linkedin.com×1
Social
Contact
- Address
- Manchester, GB
DNS records live
- NS
-
- ns-1265.awsdns-30.org
- ns-1641.awsdns-13.co.uk
- ns-378.awsdns-47.com
- ns-553.awsdns-05.net
- MX
-
- 10 mx01.mail.icloud.com
- 10 mx02.mail.icloud.com
- TXT
-
apple-domain=HaQFCY0Mftcnc74M
Email authentication weak
- SPF
-
v=spf1 include:icloud.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Amazon RSA 2048 M01
Expires in 283 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com; img-src 'self' https://www.google-analytics.com https://lastfm.freetls.fastly.net https://*.mzstatic.com; connect-src 'self' https://www.google-analytics.com https://*.google-analytics.com https://analytics.google.com https://ws.audioscrobbler.com https://itunes.apple.com; style-src 'self' 'unsafe-inline'
Links to (7)
- sinovi.uk×4
- bsky.app×3
- dynoxide.dev×3
- github.com×3
- linkedin.com×3
- apple.com×1
- hachyderm.io×1