transaction-network.io
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- AmazonS3
- Fonts
-
- Google Fonts
Third-party hosts loaded (2)
- cdn.jsdelivr.net×1
- fonts.gstatic.com×1
DNS records live
- NS
-
- ns-1323.awsdns-37.org
- ns-17.awsdns-02.com
- ns-1944.awsdns-51.co.uk
- ns-649.awsdns-17.net
- MX
-
- 0 transactionnetwork-io02i.mail.protection.outlook.com
- TXT
-
MS=ms36404482apple-domain-verification=HYNG6wpf02PghZv3
Email authentication partial
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Amazon RSA 2048 M01
Expires in 211 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer- x-frame-options
DENY- permissions-policy
geolocation=(),midi=(),sync-xhr=(),microphone=(*),camera=(*),magnetometer=(),gyroscope=(),fullscreen=(*),payment=()- x-content-type-options
nosniff- content-security-policy
default-src blob: 'self'; img-src data: 'self' *.s3.eu-central-1.amazonaws.com *.gds.eu *.ctfassets.net img.youtube.com *.ytimg.com *.cookiebot.com dreambroker.com; script-src data: blob: 'self' 'unsafe-inline' 'unsafe-eval' *.gds.eu *.cookiebot.com; style-src data: 'self' 'unsafe-inline' *.gds.eu https://cdn.jsdelivr.net/npm/quill@2/dist/quill.snow.css; font-src data: 'self' fonts.gstatic.com *.gds.eu; object-src 'none'; connect-src 'self' *.transaction-network.io api.friendlycaptcha.com *.s3.eu-central-1.amazonaws.com *.cookiebot.com browser-intake-datadoghq.eu https://cdn.jsdelivr.net/npm/quill@2/dist/quill.snow.css.map; frame-ancestors 'self' *.transaction-network.io; frame-src *.transaction-network.io *.youtube.com *.cookiebot.com dreambroker.com; media-src *.s3.eu-central-1.amazonaws.com;- strict-transport-security
max-age=31536000; includeSubDomains; preload