narkefrakt.se

HTML metadata

Technology

Server

nginx

CMS

Drupal

PHP

8.2.24 security-only

Analytics

• Google Tag Manager

Third-party hosts loaded (1)

• www.googletagmanager.com×1

Social

• instagram
• facebook
• linkedin

Contact

Email

• info@narkefrakt.se

Phone

• 019-20 63 00

DNS records live

NS

• mark.ns.cloudflare.com
• miki.ns.cloudflare.com

MX

• 10 se.mx1.mailanyone.net
• 20 se.mx2.mx25.net
• 30 se.mx3.mailanyone.net
• 40 se.mx4.mx25.net

Verified for

• Google
• Microsoft 365

Email authentication strong

SPF

v=spf1 mx a a:mail.narkefrakt.se include:spf.mailanyone.net include:mailgun.org -all

strict (-all)

DMARC

v=DMARC1; p=reject; aspf=s; adkim=s; ruf=mailto:it@narkefrakt.se; fo=1;

policy: reject (enforced)

DKIM

• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
• s1: k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuusCVZkLx/kz/fMdKX+GWJIUFTEdfyfYkojXit3gI+VYbfIZqnP154DMUkcvHFf21PMYqwpBE7K9ikovLbylTND…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.narkefrakt.se/

present

• x-frame-options
• x-content-type-options

findings

• missing HSTS
• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• tslab.se×1
• tschakt.se×1
• onroad.se×1
• linkedin.com×1
• instagram.com×1
• gamechangingalliance.se×1
• facebook.com×1
• budpartnersweden.se×1

Linked from (3)

• gamechangingalliance.se×1
• budpartnersweden.se×1
• tschakt.se×1