sharecare.nl

HTML metadata

Technology

Server

nginx

jQuery

3.3.1 known XSS (<3.5)

Fonts

• Google Fonts

Third-party hosts loaded (2)

• fonts.googleapis.com×2
• fonts.gstatic.com×1

Contact

Phone

• 0161-769009

DNS records live

NS

• ns01.hostnet.nl
• ns02.hostnet.nl

MX

• 10 mailfilter.hostnet.nl

Verified for

• Google

Email authentication weak

SPF

v=spf1 include:_spf.hostnet.nl include:spf.mailjet.com mx a ptr ip4:185.85.17.154 ?all

neutral (?all)

DMARC

not published

DKIM

• default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqko3MdPxwP94eMl733kpZk52xvBUbPUCLd7PJS1KbsvRFQAv5G/TAXh5uT8XeNDW1LxDJqYaaUKYzNyeZGUVa…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArawvJtu5U2Ny1i0F4STld+BMCK2gx9V2Xe+UavehNdTFT2BfNNhuPgk2u8kYqfGUq8eR0GArXafHEQqd47…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hNSh8IIUsei65UccTCh97Ve1ehvTA1OI1CTttUt7WVf6r19v6hMqX1qBO5sNmLQhUKSc8g6i0nncVQ+Wm…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://sharecare.nl/informatie/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Linked from (2)

• naastenparticipatie.nl×1
• deio.nl×1