thelao.io

HTML metadata

Technology

CDN

Vercel

CMS

Next.js

JS framework

Next.js

DNS records live

NS

• charles.ns.cloudflare.com
• sara.ns.cloudflare.com

MX

• 1 aspmx.l.google.com
• 10 aspmx2.googlemail.com
• 10 aspmx3.googlemail.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:u22009445.wl196.sendgrid.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; adkim=s; aspf=s; rua=mailto:dmarc-reports@tributelabs.xyz

policy: reject (enforced)

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAue4mm/MCIeleNsye+UCb+2qlwkroYLj3CvVjInx+nTCSpnD2mMRUI3b1GkHh6euCr6NATCVoostYuk…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9kit1nUuDmUkYhdVZ710DgNPCyXoye/YFvZDkgjKvNaK4rat/QgiMHVGYOOrgg0EgVsJDFlZmAepPMNGp…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9iGUb4j7DJ4Jl5kXamKwRppGVY9StXdwv1osm8rRTm4ggRSTAlf5ypfCp1Ss7I253yoBOXjyNYE1BFB1fy…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://thelao.io/

present

• strict-transport-security

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Linked from (1)

• brahma.fi×1