norrtalje.se

HTML metadata

Technology

CMS

Gatsby

jQuery

2.1.1 known XSS (<3.5)

Stack

ASP.NET

Third-party hosts loaded (3)

• app-script.monsido.com×2
• dl.episerver.net×1
• policy.app.cookieinformation.com×1

Contact

Email

• kontaktcenter@norrtalje.se

Phone

• 212000-0217

DNS records live

NS

• ns1.loopia.se
• ns2.loopia.se

MX

• 1 norrtalje-se.mail.protection.outlook.com

TXT

• DomainVerification=357BP8RTL704BZO6K18RVPQ8ODLIL4J4OP8U65VOH2NRLF0JBSNO6JVFC37IK2EG
• vSoS_445d8e2788a9ee5f53c29893
• jSh+g3UCwdI/XqGiE+cipuF3QqSpfEdGcfUuXO/gtlqAaSdUtF5c+VDrTGZaNjWTm3kVM/29CezxJGRjmiAeHg==

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:_se_net.axiell.com include:_uk.axiell.com include:mg-lcsse.tietoevry.com include:_customdomain.learnifier.se include:amazonses.com include:spfiol.infracontrol.com ip4:62.20.76.130 ip4:91.123.56.128 ip4:52.166.139.124 ip4:52.233.189.229 -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc_rua@lets-secure.eu; ruf=mailto:dmarcforensic@norrtalje.se; fo=1

policy: quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW8DTtsTTh4ITdvGG2itrnvOOOlFbGnfdipu1N2ch+zGSmtiZw7BeBvElFXpb+q7gj4+flM7+wfKtX…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukbzis8THMef06z+tLAhmKIqEzRtnkXi1DgQy7RutM/VCjyMKmh700PDNeLvTaaNkEvmNOYBFrqAJu…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.norrtalje.se/

present

• strict-transport-security
• referrer-policy
• permissions-policy

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection

Links to (5)

• sjukvardomsorg.se×1
• roslagsbostader.se×1
• nvaa.se×1
• norrtaljeenergi.se×1
• campusroslagen.se×1

Linked from (2)

• siko.org.se×1
• malardalsradet.se×1