pikopiko.io

HTML metadata

Technology

Server

nginx

CMS

WordPress

Analytics

• Google Tag Manager

Third-party hosts loaded (6)

• cdntag.tarteaucitron.io×3
• www.googletagmanager.com×3
• capi-automation.s3.us-east-2.amazonaws.com×2
• ajax.googleapis.com×1
• ct.pinterest.com×1
• www.facebook.com×1

DNS records live

NS

• dnssecondaire.webmo.fr
• v70592.webmo.fr

MX

• 10 mail.pikopiko.io

TXT

• google-site-verification=5VdWcIBGZiT8rCYjYhhZSnC4A2oAR9YDBQSEXpAdgp8
• pinterest-site-verification=5cf9faf494a2a24424f21ec31856be87

Email authentication partial

SPF

v=spf1 +a +mx -all

strict (-all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

• default: v=DKIM1; p=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDjCsxjkQ+bsDXmIAvoG1AlLVd4iRtSyjckDT7i9ok5ukf6eZmGj6AZ96aKVMCYtU1HD8W8eCvSScZoMgQs…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://pikopiko.io/

present

• strict-transport-security

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (1)

• calendly.com×2

Linked from (2)

• ruptureengagee.com×2
• fleurdavocat.fr×2