museumarnhem.nl

HTML metadata

Technology

Server

nginx

Cookie consent

• Usercentrics

Third-party hosts loaded (2)

• cdn-eu.readspeaker.com×1
• web.cmp.usercentrics.eu×1

DNS records live

NS

• ns-i.dns.yourhosting.nu
• ns-k.dns.yourhosting.eu
• ns-m.dns.yourhosting.nl

MX

• 10 museumarnhem.in.tmes.trendmicro.eu

TXT

Show 5 TXT records

• tmes=6876c3ea1c580973b82916979c4dbde7
• apple-domain-verification=38krykuOHGX7p9z5
• adobe-idp-site-verification=c82f1ef46895d9e4f6cf16f68042e9e4e13cf979c633ff3e802b7ad99f6092d5
• sophos-domain-verification=f5c0747c95f364fb8ca9701f21a4fe7c0408277139b9ed7a4a5311530c8d1391
• MS=ms57243463

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:servers.mcsv.net include:spf.eu.exclaimer.net include:recreatex.be ip4:94.142.210.145 ip4:185.223.33.0/25 ip4:185.103.241.0/25 include:_spf.exsilia.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:rua@report.rect.to; ruf=mailto:ruf@report.rect.to; fo=1;

policy: none (monitoring only)

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://museumarnhem.nl/nl

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Linked from (3)

• gezinsklik.nl×1
• obsessedwithjewellery.com×1
• grazynaroguski.com×1