planningpotential.co.uk

HTML metadata

Technology

CDN

Cloudflare

jQuery

2.2.4 known XSS (<3.5)

Analytics

• Google Tag Manager

Third-party hosts loaded (4)

• cdnjs.cloudflare.com×2
• cdn-images.mailchimp.com×1
• fast.fonts.net×1
• www.googletagmanager.com×1

Social

• linkedin
• twitter

Contact

Phone

• 20 7357 8000
• 1423 502 115
• 117 214 1820
• 191 8202 006

DNS records live

NS

• kay.ns.cloudflare.com
• kip.ns.cloudflare.com

MX

• 10 eu-smtp-inbound-1.mimecast.com
• 10 eu-smtp-inbound-2.mimecast.com

TXT

• gF60GI6nDbgBDzVM9oh76j5btBioVXnXBpakrVRmPPyTo16h+/ASuQp4V10nTOlOaUaI5RTGM3x0KGzddzHoYQ==
• 0ed1fe018ad88275e6b42e46c8b32324c2c920b7dd
• RVPPPtS81kii61UO6aTqHO1yiJpKSa4bhd6aVA+5iD9SLUoxxyRs42z7nvWD6chiOoyJWQhYJ4CrXPRJAqmO4A==

Email authentication partial

SPF

v=spf1 a mx include:spf.exclaimer.net include:spf.protection.outlook.com include:eu._netblocks.mimecast.com include:rocket-media.net ip4:212.1.205.205 ip4:178.22.164.206 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:re+tdqrgotmprk@dmarc.postmarkapp.com, mailto:dmarcreports@planningpotential.co.uk; ruf=mailto:re+tdqrgotmprk@dmarc.postmarkapp.com; fo=1; sp=none; aspf=r;

policy: none (monitoring only) · sp=none

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyLXVPHw0EOYckNE84aQa+8W4DfXUDyOWgD4kvUosWxPzS+knOqGZvi1KgtMRCeUxCLAe+kaS+JFpywo8WfC…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.planningpotential.co.uk/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (2)

• twitter.com×1
• linkedin.com×1

Linked from (1)

• rocket-media.net×1