vinci-cidadania.pt

HTML metadata

Technology

Server

nginx

CMS

Gatsby

Stack

Django

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• django-multisite-vinci-cidadania.s3.eu-west-1.amazonaws.com×13
• www.googletagmanager.com×1

Social

• facebook
• linkedin
• youtube

Contact

Email

• info@vinci-cidadania.pt

DNS records live

NS

• dns1.host-redirect.com
• dns2.host-redirect.com
• dns3.host-redirect.com
• dns4.host-redirect.com

MX

• 10 mx01.host-services.com
• 20 mx02.host-services.com
• 30 mx03.host-services.com

Email authentication strong

SPF

v=spf1 include:spf.mailbox.pt -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:peca@yomoc.com

policy: quarantine

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://vinci-cidadania.pt/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• CSP allows unsafe inline scripts/styles
• missing Permissions Policy

Links to (7)

• youtube.com×1
• yomoc.com×1
• vinci-energies.pt×1
• linkedin.com×1
• fondation-vinci.com×1
• facebook.com×1
• ana.pt×1

Linked from (1)

• crescer.org×1