schuh-bodentechnik.de

HTML metadata

Technology

CMS

WordPress

Registration

Updated

2022-10-12

Name servers

• ns0.infravesi.com.
• ns1.infravesi.com.
• nsa.perf1.fr.
• nsb.perf1.com.
• nsc.perf1.com.

DNS records live

NS

• ns0.infravesi.com
• ns1.infravesi.com
• nsa.perf1.fr
• nsb.perf1.com
• nsc.perf1.com

MX

• 5 schuhbodentechnik-de01c.mail.protection.outlook.com

TXT

• MS=ms18462013 x/ze8k7H3mizGTZUgNMzIdg0dhTUZjr9BxwfCJ0fSbCmVyxACIu3e6uXzomnvYdMDE4pe3XkSZ5dfRhMwzHpMQ==

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:spf.protection.vinci-energies.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc@vinci-energies.com; pct=100; sp=reject

policy: reject (enforced) · sp=reject

DKIM

• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDF+Kw9VcceOSX7h6pH2yN6PW3X7yf9KLdJqDrKJxRWnOBkh+ttnFXS/eqI3dLag6RZ+KHpfJkgDmXYElggd5…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.schuh-bodentechnik.de/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• CSP allows unsafe inline scripts/styles
• missing Permissions Policy

Links to (1)

• vinci-energies.de×4

Linked from (6)

• vinci-energies.es×3
• vinci-energies.de×3
• vinci-energies.co.uk×3
• vinci-energies.com×3
• transelec.com×2
• cegelec-lyon.com×2