obnadace.cz

HTML metadata

Technology

Server

openresty

jQuery

3.4.1 known XSS (<3.5)

Third-party hosts loaded (4)

• cdnjs.cloudflare.com×2
• maxcdn.bootstrapcdn.com×2
• ajax.googleapis.com×1
• www.toplist.cz×1

DNS records live

NS

• ns1.websupport.cz
• ns2.websupport.cz
• ns3.websupport.eu

MX

• 10 mx10.active24.cz
• 100 mx20.active24.cz

TXT

• spf2.0/pra a mx include:_sid.websupport.cz ?all

Verified for

• Google

Email authentication weak

SPF

v=spf1 a mx include:_spf.websupport.cz ?all

neutral (?all)

DMARC

not published

DKIM

• mail: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAT3XEWht4kF9Sfp3MHe9sJu4pNqdYxPXX+eAD9+EEaxoTnUQwFv8+jkzzSofWKfOjcv6g9C1/WWY6…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://obnadace.cz/

present

• content-security-policy

findings

• missing HSTS
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (2)

• toplist.cz×1
• jtbank.cz×1

Linked from (1)

• obhana.cz×1