nsb.it
HTML metadata
Technology
- Server
- 4D
- jQuery
- 2.1.1 known XSS (<3.5)
Third-party hosts loaded (2)
- is.rinascita.it×90
- cdnjs.cloudflare.com×2
Social
Contact
- Phone
DNS records live
- NS
-
- nscp19.vmdns.net
- nscp20.vmdns.net
- MX
-
- 10 mx.truemail.it
Email authentication partial
- SPF
-
v=spf1 +a +mx +ip4:93.191.242.19 +include:_spf.truemail.it ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=none;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400policy: none (monitoring only) · sp=none - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHriKxaFJL+IbpTruK0Uv7Db2Dk/6FsUqWJCYFVkR9fNkqshrXtlvnwuJ9MJZ+QxSgRhYtbwMQg8wp…
selectors probed - default:
Certificate (current) wrong cert
Sectigo Public Server Authentication CA DV R36
Expires in 2 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- short HSTS max-age
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
no-referrer-when-downgrade- x-content-type-options
nosniff- content-security-policy
script-src 'self'- strict-transport-security
max-age=3600; includeSubDomains