surtep.cz
HTML metadata
Technology
- Server
- openresty
- CMS
- Joomla
- jQuery
- 1.11.3 known XSS (<3.5)
- Stack
- PHP
- Analytics
-
- Google Tag Manager
- Ads
-
- Meta Pixel
Third-party hosts loaded (8)
- cdn.myshoptet.com×41
- www.googletagmanager.com×2
- ajax.googleapis.com×1
- c.seznam.cz×1
- connect.facebook.net×1
- easyshop.erp-recycling.at×1
- image.pobo.cz×1
- www.facebook.com×1
Social
Contact
DNS records live
- NS
-
- ns.wedos.com
- ns.wedos.cz
- ns.wedos.eu
- ns.wedos.net
- MX
-
- 1 smtp.google.com
- TXT
-
MS=201F5BAC351529CA35109312F31DA5CE98EED712
- Verified for
-
- Meta
Email authentication partial
- SPF
-
v=spf1 mx a include:_spf.myshoptet.com include:_spf.google.com -allstrict (-all) - DMARC
-
v=DMARC1; p=none; sp=Quarantine; adkim=r; aspf=r; fo=1; rf=afrf; pct=100policy: none (monitoring only) · sp=quarantine - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPNo6vswYzT5Ot8jzCreehB7Gpngqxh9GtVNHCBtL3pAYaXRxJRAzovH1uffcbX2mDwVGm+HRTSzOn…
selectors probed - google:
Certificate (current)
ZeroSSL ECC DV SSL CA 2
Expires in 71 days
HTTP security headers
- present
-
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- missing Content Security Policy
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff