starbase.co

HTML metadata

Technology

CDN

Vercel

CMS

Next.js

jQuery

3.1.1 known XSS (<3.5)

JS framework

Next.js

Third-party hosts loaded (1)

• github.com×1

Social

• telegram
• github
• facebook
• twitter
• linkedin

Contact

Email

• support@starbase.co
• support@starbase.costar

DNS records live

NS

• liz.ns.cloudflare.com
• peyton.ns.cloudflare.com

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

Email authentication strong

SPF

v=spf1 include:sendgrid.net include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:sysadmin@starbase.co; ruf=mailto:sysadmin@starbase.co;

policy: reject (enforced)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dTlwFOKAcCS1+7bQ8jVNzQ8A2ZyPU5Lc1qNZ6r7RfrkFCbOZUl4lX/JMmgQ0pJyO4KxHGOoX5erpxYshq…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc23zgRlGsRQb66Pq4k1j03W1Ahu8htsgHuvfpof39hZNqlgqUaSlS7tnLagI4WSmyGtw8bdezwUksijaV…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.starbase.co/

present

• strict-transport-security

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• uniswap.org×1
• twitter.com×1
• telegram.me×1
• linkedin.com×1
• github.com×1
• forbes.com×1
• facebook.com×1
• amazonaws.com×1

Linked from (1)

• icocrunch.io×1