noervenich.de

HTML metadata

Technology

Server

kdvzcloud

Third-party hosts loaded (1)

• prod-chat-app.neurabot.neuraflow.de×1

Social

• facebook
• instagram
• youtube

Registration

Updated

2016-09-08

Name servers

• dns1.kdvz-frechen.de.
• dns2.kdvz-frechen.de.

DNS records live

NS

• dns1.kdvz-frechen.de
• dns2.kdvz-frechen.de

MX

• 20 mx01.kdvz-frechen.de
• 20 mx02.kdvz-frechen.de

TXT

• brevo-code:df15236deb681dcf73cc29f54cebff4c

Email authentication strong

SPF

v=spf1 include:mail.kdvz.nrw include:ekom21.de include:_spf1.ekom21.de -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@noervenich.de; ruf=mailto:dmarc@noervenich.de; rf=afrf; fo=1; adkim=r; aspf=r

policy: quarantine

DKIM

• mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.noervenich.de/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing Referrer Policy
• missing Permissions Policy

Links to (11)

• bundeswehr.de×2
• energiemonitor.de×2
• facebook.com×2
• instagram.com×2
• kreis-dueren.de×2
• neffeltal.de×2
• regioentsorgung.de×2
• vhs-rur-eifel.de×2
• wegweiser-kommune.de×2
• youtube.com×2
• zuelpicherboerde.de×2

Linked from (2)

• vhs-rur-eifel.de×2
• zuelpicherboerde.de×1