optimera.no

HTML metadata

Technology

CDN

Cloudflare

Analytics

• Google Tag Manager

Cookie consent

• OneTrust

Fonts

• Google Fonts

Third-party hosts loaded (4)

• cdn.cookielaw.org×1
• fonts.googleapis.com×1
• fonts.gstatic.com×1
• www.googletagmanager.com×1

Social

• facebook
• instagram
• youtube

DNS records live

NS

• nsx1.saint-gobain.com
• nsx2.saint-gobain.com
• nsx3.saint-gobain.com

MX

• 10 mxa-002c9e02.gslb.pphosted.com
• 10 mxb-002c9e02.gslb.pphosted.com

TXT

Show 17 TXT records

• infor-cloudsuite-domain-verification=V9FSNV6NW9LKCSQ5SJLUPDSJX7NP2Y2G5TXLD28PNLNZKME3K7DLYNT3YEXPBM7G
• e8744264e1038062f3aa4d3355fb6e9da62a0c368f4c165b6e38ff7b7d5ad77d
• v/pC4fjAerGUR9cTaD1IKjb8G/DJ8qweKsTjyXcJeT+IJz+JBhMSOaWHqd3CDLdOtPBvn0z26u7djYlAAjLJsA==
• 1pxqklfhcb1qm93m9tvchvtplm0xyqb8
• _w2fkqkd7qfdp88jjyvm4au2vazksmr4
• b46137e4d1bbfd5171814485ce5e5245c9e91e6ea89010db074b49add1d2e0e3
• MS=263F55B02256BE09D8CD9C139CC7388B1E3F7BA6
• 05b946bd7313845841b3413c4d54e96344ea7f21f5117184225a653202827ca5
• adobe-sign-verification=aa46c50a9d5c6bf8b1778553f46ecb28
• pardot1064892=f33a8517edc1986b30dbc49ee7251653170421431a371b301f1989a1f9de5a82
• 49jv1mg2b75mvsnqxwdjkvylp16xkgs3
• bd6871422f637ce3a006d8723f51867b
• have-i-been-pwned-verification=9201f69b64f42ebd946ed53a589c5f17
• _le65f853kev9mq3btec02u7yrg3xenb
• qs2dhw50by9bv20s40241mztzq0yqd6d
• infor-cloudsuite-domain-verification=N9PZY865LRXYDWFHSW76HQZ53YTLAHAHWDVCGWWGM32NN8YMNVBNGCMFN3HMQH73
• sending_domain1064892=a5dd5260f1b472143254ace9b35327773d390e013240a48c7474f9c460337946

Verified for

• Figma
• GlobalSign
• Google
• Microsoft 365
• Workplace

Email authentication weak

SPF

not published

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com

policy: none (monitoring only)

DKIM

• k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryxEhe0iPrYJhYGvkf6d8wWQ2bviwNVcREobR+JqSETr8qfmsrQs2O6o0uRYevvpzNeXBkqZF8rpUYTdO0…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy58m9YfpUpqUwT9Nqh6PrNZiCnc/MT4efggNGM1vt5NmJ1Sh0k7qmg6eWJ8IPZpk6qVVOjfn6XhQScy/Zv…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.optimera.no/

present

• content-security-policy
• x-frame-options
• cross-origin-opener-policy

findings

• missing HSTS
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• facebook.com×1
• instagram.com×1
• reachmee.com×1
• youtube.com×1

Linked from (1)

• avensia.com×1