surgiva.it

HTML metadata

Technology

Server

nginx

CMS

WordPress

jQuery

3.6.0

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Social widgets

• Vimeo Embed

Third-party hosts loaded (6)

• fonts.googleapis.com×3
• www.google.com×2
• gmpg.org×1
• player.vimeo.com×1
• s.w.org×1
• www.googletagmanager.com×1

Social

• facebook
• instagram

Contact

Phone

• 00187220223

DNS records live

NS

• ns1.mclink-net.it
• ns2.mclink-net.it

MX

• 10 surgiva-it.mail.protection.outlook.com

TXT

• 3HDLJ9CBI+705EkIyIzr/dij7UU8vRxQWiMc5/BW8Bm43g43eld9Uq5RVVnZlLCfS+Xp+wy8ImXJ+NeiQ8hT9g==

Verified for

• Microsoft 365

Email authentication weak

SPF

v=spf1 ip4:213.21.176.178 ip4:213.21.140.249 ip4:213.21.140.254 include:spf.protection.outlook.com include:graffiti2000.com include:spf-out.mclink-net.it include:musvc.com ~all

softfail (~all)

DMARC

not published

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAys5cqwtm6qHR4b0PjtN+P8m5I26zVJVrsKDfbMcT8qdZGunGl2fydTcGI+nST3YYoXb0PsPtKG3hZD…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1G0REzb9lLM0xP/c/x+y6qlKeM2rITCSp8wTlKA0Bh+b5n0hP8MVMQcKeW4blkVkajkq2opqolGpDV…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.surgiva.it/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• facebook.com×1
• graffiti.it×1
• instagram.com×1

Linked from (2)

• ristoranticontrolafame.it×1
• gruppolunelli.it×1