turnlab.be

HTML metadata

Technology

CDN

Cloudflare

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (4)

• cdn.webshopapp.com×104
• fonts.googleapis.com×2
• cdnjs.cloudflare.com×1
• www.googletagmanager.com×1

Social

• facebook
• instagram
• youtube

Contact

Phone

• 0420 288 330

DNS records live

NS

• ns1.combell.eu
• ns3.combell.net
• ns4.combell.net

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

• google-site-verification=exaBsotU8wby2J6R9-R8wPJg8zRusuzwKKnr4tEIyvM
• google-site-verification=B_iinn60BjL3aRhcGy0pc5prc9H8wT8Xc0GqvSz5bS4

Email authentication weak

SPF

v=spf1 a mx include:_spf.google.com a:google.com a:nucleus.be ~all

softfail (~all)

DMARC

not published

DKIM

• k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.turnlab.be/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (4)

• facebook.com×1
• instagram.com×1
• webshopapp.com×1
• youtube.com×1

Linked from (1)

• future-retro.com×1