readyworks.com
readyworks.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Joomla
- jQuery
- 2.2.4 known XSS (<3.5)
- Analytics
-
- Google Tag Manager
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (6)
- player.vimeo.com×4
- 7052064.fs1.hubspotusercontent-na1.net×2
- cdn.jsdelivr.net×2
- cdnjs.cloudflare.com×1
- code.jquery.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- Network Solutions, LLC
- Created
- 2005-07-20
- Expires
- 2030-07-20 1506 days left
- Updated
- 2021-10-26
- Name servers
-
- ns1.bdm.microsoftonline.com
- ns2.bdm.microsoftonline.com
- ns3.bdm.microsoftonline.com
- ns4.bdm.microsoftonline.com
DNS records live
- NS
-
- ns1.bdm.microsoftonline.com
- ns2.bdm.microsoftonline.com
- ns3.bdm.microsoftonline.com
- ns4.bdm.microsoftonline.com
- MX
-
- 0 readyworks-com.mail.protection.outlook.com
- TXT
-
mscid=9XW0NIcy58IZwBzyIroiFE33IXDJYHXzAu+C3uDd3VtWdWemUIn2Eo/8n5zIRYtPrZyiPwT9V50zsvJRz2oDaw==
- Verified for
-
- Anthropic
- Microsoft 365
- Zoom
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:spf.jobdiva.com include:sendgrid.net ip4:20.237.113.14 include:amazonses.com ip4:40.76.174.177 ip4:98.66.244.199 ip4:20.216.216.241 include:*.readyworks.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; sp=none; pct=100; ri=86400; rua=mailto:info@readyworks.compolicy: reject (enforced) · sp=none - DKIM
-
Show 4 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPoE3HhXR/cvtZw5byMvx+fdlryqRXppHU4wl7BJtSP4Fc2AeBWLhfgSt5riRduSY5mJnbCzStM1HVUSmD3Y… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKN1CZkx5wa5JuUMUo1I360V1XCU84EehMJmzGw6f0HMJxF0buW5wvCm2FFIO/hqsq5pW+UG9ggmN1… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzP0e0PiC8+1odA7wtamDbMtKL2K0nnrxAJEr1TgJGZkj7gbU5lRgkRiZ2IY0IysU1JKnOn6XgK9OAaarOk… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04Ki+jaLJ5DcQUhaVw5rpJJ9gvS6BhNatFIEFLcvOH9G6ILH6oHhmJ6fyiUM5wrWlj5uyOR4WUV6LfItxm…
selectors probed - selector1:
Certificate (current)
R13
Expires in 76 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
origin-when-cross-origin- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' https://js.hsforms.net https://js.hscollectedforms.net https://js.hs-scripts.com https://js.hs-banner.com https://js.hs-analytics.net https://*.hubspot.com https://*.hubspotusercontent-na1.net https://www.google-analytics.com https://www.googletagmanager.com https://code.jquery.com https://cdn.jsdelivr.net https://fast.wistia.com https://player.vimeo.com https://*.hotjar.com https://*.hotjar.io 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' 'nonce-xNnJgQPLv19Ip0Xk2XE/9A=='; style-src 'self' 'unsafe-inline' https://*.hubspot.com https://*.hubspotusercontent-na1.net https://fonts.googleapis.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://maxcdn.bootstrapcdn.com https://static.hsappstatic.net; img-src 'self' https://*.hubspot.com https://*.hsforms.net https://*.hubspotusercontent-na1.net https://forms.hsforms.com https://forms-na1.hsforms.com https://perf-na1.hsforms.com https://www.google-analytics.com https://*.doubleclick.net http- strict-transport-security
max-age=31536000