parkem.ch

HTML metadata

Technology

Server

Apache

jQuery

1.11 known XSS (<3.5)

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (2)

• fonts.googleapis.com×1
• www.googletagmanager.com×1

Social

• linkedin
• youtube

Contact

Phone

• +41564933883

DNS records live

NS

• ns1.ncloud.swiss
• ns2.ncloud.swiss

MX

• 10 spamix01.ncloud.swiss
• 20 spamix02.ncloud.swiss
• 30 spamix03.ncloud.swiss
• 5 spamix00.ncloud.swiss

Verified for

• Microsoft 365

Email authentication weak

SPF

v=spf1 a mx a:spamix00.ncloud.swiss a:mail.netkomcloud.ch a:mail.secure-ncloud.ch ip4:185.202.80.0/23 ip4:185.215.156.184/32 ip4:16.63.247.100/32 ip4:51.96.33.45/32 include:agenturserver.de -all

strict (-all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; s=email;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1m4ZBMfnhOXCAKbG/fwomDPO1a529CwNni7P89qoh/Qs0ex6Zltv/MxLG6BzF7mRLPSIy3…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.parkem.ch/

present

• x-content-type-options

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• youtube.com×1
• swiss-pim.ch×1
• linkedin.com×1

Linked from (1)

• wuk.ch×1