max-doerr.de

HTML metadata

Technology

Server

Apache

jQuery

2.1.4 known XSS (<3.5)

Third-party hosts loaded (1)

• www.max-doerr.com×1

Social

• youtube
• instagram
• linkedin

Contact

Email

• info@max-doerr.de

Phone

• +49726791220

Registration

Updated

2018-09-08

Name servers

• ns1113.ui-dns.biz.
• ns1113.ui-dns.com.
• ns1113.ui-dns.de.
• ns1113.ui-dns.org.

DNS records live

NS

• ns1113.ui-dns.biz
• ns1113.ui-dns.com
• ns1113.ui-dns.de
• ns1113.ui-dns.org

MX

• 0 maxdoerr-de0i.mail.protection.outlook.com

Verified for

• Apple

Email authentication strong

SPF

v=spf1 mx include:spf.crsend.com a:mailhost.max-doerr.de include:spf.protection.outlook.de include:spf.protection.outlook.com include:spf-de.emailsignatures365.com ip6:2A01:0111:F403:2622:0000:0000:0000:0600 ip6:2A01:0111:F403:2622:0000:0000:0000:0601 ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:dmarc@max-doerr.de

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9slB/cNoMvtVefiX2ilKeHzh31HEwwGQiry9skQ7ZkH/uVzcFLF6vl4GfFZWpiPbEkfKkaNuH5Hbmn…
• dkim: v=DKIM1;t=s;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBwotKR498XcuvQej9IqITP8+pIV7reU1oEVNwTpRz8pmqw4LTcSO34S2JQtwy22m/5L7g5Ow3pg3nR0qu…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.max-doerr.de/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• youtube.com×1
• t-td.de×1
• max-doerr.com×1
• linkedin.com×1
• karriere-doerr.de×1
• instagram.com×1

Linked from (2)

• karriere-doerr.de×1
• t-td.de×1