scrtsanta.app

HTML metadata

Technology

CDN

Cloudflare

Ads

• Google AdSense

Fonts

• Google Fonts

Third-party hosts loaded (3)

• fonts.googleapis.com×1
• messenger.getfernand.com×1
• pagead2.googlesyndication.com×1

DNS records live

NS

• dale.ns.cloudflare.com
• sandy.ns.cloudflare.com

MX

• 10 mx1.improvmx.com
• 20 mx2.improvmx.com

TXT

• google-site-verification=sEjKfdvnUEM6rEOX-rRPVcH_nA2yxGjAROGHAOkc9SQ

Email authentication partial

SPF

v=spf1 include:sendgrid.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:f63a29efb1f8408189289374f429342f@dmarc-reports.cloudflare.net,mailto:report@scrtsanta.app

policy: none (monitoring only)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRCp1dLZuYk84eYPJGbvHog9g9kuBqPt2MLyBMQtyuA5V2VlWMOvJzhbLlhrdyq+rZMFQPCeE8v99BUwlY…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQNK4IpztBRDRczLOW/Cr0S0EhJHc5LQCWbzi+GPtCWRrt7mio96ihFS8Dwq6ivJaKu5oTXK5HcWzk8cUAwsZlcb…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://scrtsanta.app/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (5)

• apple.com×2
• burberry.com×2
• google.com×2
• sap.com×2
• servier.com×2

Linked from (1)

• theblogstatus.com×2