secureflag.com
secureflag.com
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- nginx
- JS framework
- Angular 13.3.12
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (5)
- fonts.googleapis.com×1
- fonts.gstatic.com×1
- www.google.com×1
- www.googletagmanager.com×1
- www.gstatic.com×1
Social
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 2014-06-02
- Expires
- 2027-06-02 366 days left
- Updated
- 2026-05-16
- Name servers
-
- ns-1519.awsdns-61.org
- ns-163.awsdns-20.com
- ns-2041.awsdns-63.co.uk
- ns-912.awsdns-50.net
DNS records live
- NS
-
- ns-1519.awsdns-61.org
- ns-163.awsdns-20.com
- ns-2041.awsdns-63.co.uk
- ns-912.awsdns-50.net
- MX
-
Show 6 MX records
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 32767 ms74178880.msv1.invalid
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
MS=F1251B6D971F2708F8973AF2463CB74A30F634B7
- Verified for
-
- Atlassian
- Stripe
- Zoho
Email authentication strong
- SPF
-
v=spf1 ip4:103.84.217.15/32 ip4:103.84.217.238/32 ip4:103.89.75.238/32 ip4:121.244.91.48/32 ip4:121.244.91.52/32 ip4:122.15.156.182/32 ip4:13.247.164.219/32 ip4:134.128.64.0/19 ip4:134.128.96.0/19 ip4:135.84.80.0/24 ip4:135.84.81.0/24 ip4:135.84.82.0/24 ip4:135.84.83.0/24 ip4:136.143.160.0/24 ip4:136.143.161.0/24 ip4:136.143.162.0/24 ip4:136.143.168.0/22 ip4:136.143.168.0/24 ip4:136.143.170.0/24 ip4:136.143.176.0/24 ip4:136.143.177.0/24 ip4:136.143.178.49/32 ip4:136.143.182.0/23 ip4:136.143.184.0/24 ip4:136.143.188.0/24 ip4:136.143.190.0/23 ip4:139.167.79.86/32 ip4:149.72.0.0/16 ip4:159.183.0.0/16 ip4:165.173.128.0/24 ip4:165.173.180.1/32 ip4:165.173.180.250/31 ip4:165.173.182.250/31 ip4:165.173.189.205/32 ip4:167.89.0.0/17 ip4:168.245.0.0/17 ip4:169.148.129.0/24 ip4:169.148.131.0/24 ip4:169.148.138.0/24 ip4:169.148.142.10/32 ip4:169.148.142.33/32 ip4:169.148.144.0/25 ip4:169.148.144.10/32 ip4:169.148.146.0/23 ip4:169.148.174.10/32 ip4:169.148.175.3/32 ip4:169.148.179.3/32 ip4:169.148.188.0/24 ip4:169.148.188.182/32 ip4:185.172.198.0/24 ip4:185.172.199.0/24 ip4:185.20.209.0/24 ip4:185.20.211.0/24 ip4:185.230.214.0/23 ip4:192.254.112.0/20 ip4:195.154.60.200 ip4:198.21.0.0/21 ip4:198.37.144.0/20 ip4:199.127.232.0/22 ip4:199.255.192.0/22 ip4:199.34.22.36/32 ip4:199.67.72.0/22 ip4:199.67.80.2/32 ip4:199.67.80.20/32 ip4:199.67.82.2/32 ip4:199.67.82.20/32 ip4:199.67.84.0/24 ip4:199.67.86.0/24 ip4:199.67.88.0/24 ip4:199.67.90.0/24 ip4:204.141.32.0/23 ip4:204.141.42.0/23 ip4:206.55.144.0/20 ip4:208.117.48.0/20 ip4:209.85.128.0/17 ip4:216.221.160.0/19 ip4:217.182.241.115 ip4:223.165.113.0/24 ip4:223.165.115.0/24 ip4:223.165.118.0/23 ip4:223.165.120.0/23 ip4:23.249.208.0/20 ip4:23.251.224.0/19 ip4:24.110.64.0/18 ip4:31.186.226.0/24 ip4:31.186.243.0/24 ip4:34.241.242.183/32 ip4:43.239.212.33/32 ip4:50.31.32.0/19 ip4:51.15.253.103 ip4:51.15.34.108 ip4:51.91.164.78 ip4:52.6.74.205/32 ip4:54.240.0.0/18 ip4:54.240.64.0/18 ip4:56.124.6.228/32 ip4:65.154.166.0/24 ip4:69.169.224.0/20 ip4:74.125.0.0/16 ip4:76.223.128.0/19 ip4:76.223.176.0/20 ip4:8.39.54.0/23 ip4:8.39.54.250/31 ip4:8.40.222.0/23 ip4:8.40.222.250/31 ip4:89.36.170.0/24 ip4:91.134.56.180 ip4:91.134.60.158 ip4:91.135.68.104/29 ip6:2001:4860:4864::/56 ip6:2404:6800:4864::/56 ip6:2607:13c0:0001:0000:0000:0000:0000:7000/116 ip6:2607:13c0:0002:0000:0000:0000:0000:1000/116 ip6:2607:13c0:0004:0000:0000:0000:0000:0000/116 ip6:2607:f8b0:4864::/56 ip6:2800:3f0:4864::/56 ip6:2a00:1450:4864::/56 ip6:2c0f:fb50:4864::/56 ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=reject;pct=100;fo=1;rua=mailto:dmarc-reporting@secureflag.compolicy: reject (enforced) - DKIM
-
Show 4 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtGE54ynA2WR6cmZ9f5f4oWionXVzgvWI+/Uy4SOrJJCZufiyFhmHQ/0msFu6dWUqD7GexhzCThJrz… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AqwxUg4ijiTwNbB6ub5qHDufA9tLHUQlAe5h2zwU3pLnSRT/J68Zd1XwAjsjI1boeWhWI7AEo6TCVqcro… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDsZxFReKMR7sCOsrLJ16U6Y2DfwY+KCn8INHeVsIezWgwnsHc0hCRnseoX5jvwle6li9Qh4z+H4aSgXw750xD8QO…
selectors probed - google:
Certificate (current)
Amazon RSA 2048 M01
Expires in 206 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
sync-xhr=self,fullscreen=self- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'report-sample' 'self' https://*.secureflag.net https://*.secureflag.training https://*.secureflag.com https://cdn.signalzen.com https://*.google-analytics.com https://www.googleadservices.com https://www.google.com https://*.doubleclick.net https://www.googletagmanager.com https://www.gstatic.com https://static.ads-twitter.com/uwt.js https://www.redditstatic.com/ads/pixel.js https://snap.licdn.com/li.lms-analytics/insight.min.js https://*.googlesyndication.com https://js.zi-scripts.com https://tags.clickagy.com https://ddwl4m2hdecbv.cloudfront.net 'sha256-R6O9ne/CtoK78qqjSnB8Qw6tyD3PSLeHV082ihjaT/k=' 'sha256-LxYdyvvcMeGmnxW/TCPyaZ6rDJMojEvwZ6oe/7T8eAA=' 'sha256-JPNBxiqQ9GarUs+4H9WSHjM8SO32iqKSwh+cqHT/7CA=' 'sha256-YLKXEA+3nYO/0yfI33w8Mjrz3WhtshCuw/eIc72kwQ8' 'sha256-yU2oaYzQVn0U9jSUd9QRKnT6odCCOCfsLkS4uWRamaM=' 'sha256-cNNF6RQt1wTFM3eNBtKC3KPZOtZ/zIi36OHZhI9jyJw='; style-src 'report-sample' 'self' 'unsafe-inline' https://fonts.googleapis.com https://www- strict-transport-security
max-age=31536000; includeSubdomains;