stadstheaterdebond.nl

HTML metadata

Technology

Server

nginx

jQuery

2.1.0 known XSS (<3.5)

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (4)

• cdnjs.cloudflare.com×2
• ajax.googleapis.com×1
• fonts.googleapis.com×1
• www.googletagmanager.com×1

Social

• facebook
• instagram
• youtube

Contact

Email

• info@stadstheaterdebond.nl
• info@stadstheaterdebond.nl.de

Phone

• +31541536300

DNS records live

NS

• nsauth1.introweb.nl
• nsauth2.introweb.nl
• nsauth3.introweb.net

MX

• 50 stadstheaterdebond-nl.mail.protection.outlook.com

Verified for

• Microsoft 365

Email authentication strong

SPF

v=spf1 mx a ip4:84.241.144.162 ip4:62.45.194.174 ip4:84.241.144.161 ip4:62.45.123.239 include:_spf.itix.nl include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400

policy: reject (enforced) · sp=none

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5t/RLMdkKTX0ZohEyewM1vPT0nXgOpMj6csUt95TP/Cxhomlu2wMTAaJ/C6r0yYfZBK/vpnvr24cPj…
• mail: v=DKIM1;h=sha256;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6IL5oewz+Xr99ExTLBnnnCMHLgln470FgbgpvUwXqpmiiK8aqXCAV4cfHjcxmcZejObzMvKxlkWE…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.stadstheaterdebond.nl/

present

• x-frame-options

findings

• missing HSTS
• missing Content Security Policy
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• youtube.com×1
• podiumcadeaukaart.nl×1
• periview.nl×1
• itix.nl×1
• instagram.com×1
• facebook.com×1

Linked from (1)

• kleinetheatersoverijssel.nl×1