martinmaple.be
HTML metadata
Technology
- Server
- nginx
- Stack
- Laravel
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (6)
- shuttle-storage.s3.amazonaws.com×12
- fonts.googleapis.com×3
- shuttle-assets-new.s3.amazonaws.com×3
- kit.fontawesome.com×2
- cdnjs.cloudflare.com×1
- www.googletagmanager.com×1
Social
Contact
DNS records live
- NS
-
- ns01.one.com
- ns02.one.com
- MX
-
- 10 martinmaple-be.mail.eo.outlook.com
Email authentication weak
- SPF
- not published
- DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - k2:
Certificate (current)
R12
Expires in 85 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https: blob:; font-src 'self' data: https:; connect-src 'self' https: wss:; frame-src 'self' https:; object-src 'none'; base-uri 'self'- strict-transport-security
max-age=31536000; includeSubDomains, max-age=31536000; includeSubDomains; preload
Links to (23)
- ilétaitunefois.be×1
- vixx.be×1
- tricots-duger.com×1
- textileblue.be×1
- purly.be×1
- pascale-fashion.be×1
- maisonpaulus.be×1
- mafacondetre.be×1
- lvfashion.be×1
- instagram.com×1
- hauman.be×1
- glsport.nl×1
- geelcentrum.be×1
- facebook.com×1
- denieuwebeer.be×1
- deleye.be×1
- dehaentailor.be×1
- cequeveulentleshommes.be×1
- caztan.be×1
- cafegrafiek.be×1
- boutique-pileouface.be×1
- beroepskleding-landuyt.be×1
- artuurbrussels.com×1