nmbi.ie
HTML metadata
Technology
- CDN
- Azure Front Door
- jQuery
- 2.2.4 known XSS (<3.5)
- Stack
- ASP.NET
Third-party hosts loaded (3)
- ajax.googleapis.com×1
- scripts.simpleanalyticscdn.com×1
- ws.sharethis.com×1
Social
Contact
- Phone
- Address
- Bord Altranais agus Cnáimhseachais na hÉireann, Nursing and Midwifery Board of Ireland (NMBI), 18/20 Carysfort Avenue, Blackrock, Co. Dublin, A94 R299, Ireland.Customer Feedback
DNS records live
- NS
-
- cwext.gn.gov.ie
- ext3.gn.gov.ie
- gbext.gn.gov.ie
- MX
-
- 0 nmbi-ie.mail.protection.outlook.com
- TXT
-
Show 4 TXT records
MS=F55EB02217AB53BCEEF4FC07B1B60E7C8F8DC249_6ujhv09hqtf9uqjwn4lwx5sef9mgodlpWpBh+v35T1fVop1wH1tmgAfB+MHbCLi+B+QLHbK+QVnBQJyEBGTPugAP81F1Db6TjtwPAEMyJNhPeTcCaUi/A==95rgc6n7bzrfk22ngdr4x4m2yzhndf1g
- Verified for
-
- Apple
- Brevo
- GlobalSign
- Microsoft
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 mx a ip4:5.61.115.48/28 include:nw005.com include:spf.protection.outlook.com include:spf.sendinblue.com include:spf.mailjet.com include:mailgun.org -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; sp=none; rua=mailto:dmarc@nmbi.ie!10m,mailto:dmarc@nmbi.ie; ruf=mailto:dmarc@nmbi.ie!10m; rf=afrf; pct=100; ri=86400;policy: quarantine · sp=none - DKIM
-
Show 4 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDG4l2tAIx856ZsYzz1a4FfkWs/0bi5ZCheU0sAgXg/P4WEr42THFwB739qzfMw2XXNlcJ0nqmCaGJjJ4R8tr… - mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H2wyd2R3YRb+qA75pQquGIpIcmbw+JTMq7UuZq8VL47ZsK6U9mzJVPsWK/sF8Q6EWE40A9yRY4HfHq4o8… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6MXLATIaZRD10+Rrq2THAh+IomoYfhrXMIvnd5/Iswb6DjraFg8/6eAe+TIbmI1YxoPdJvRQqe+JsQ+mz+cD+Nz…
selectors probed - selector1:
Certificate (current)
GeoTrust TLS RSA CA G1
Expires in 175 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- missing Permissions Policy
Header values
- referrer-policy
origin-when-cross-origin- x-frame-options
ALLOW-FROM https://mynmbidev02.powerappsportals.com/ https://mynmbiprod.powerappsportals.com https://my.nmbi.ie https://nmbiverifyprod.powerappsportals.com/ https://myverify.nmbi.ie/- x-content-type-options
nosniff- content-security-policy
default-src 'self'; base-uri 'self'; child-src 'self'; connect-src 'self' https://*.sharethis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://*.onetrust.com; report-uri 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google-analytics.com https://*.googletagmanager.com https://*.googleapis.com https://*.sharethis.com https://*.onetrust.com; style-src 'self' 'unsafe-inline' https://*.sharethis.com ;font-src 'self' 'unsafe-inline'; frame-src 'self' https://*.sharethis.mgr.consensu.org https://*.sharethis.com https://www.google.com *.youtube.com; img-src 'self' data: https://*.google.ie https://*.google.com https://*.doubleclick.net https://*.google-analytics.com https://*.sharethis.com https://*.onetrust.com;- strict-transport-security
max-age=31536000