wis.no

HTML metadata

Technology

Server

nginx

jQuery

1.12.2 known XSS (<3.5)

Third-party hosts loaded (4)

• code.jquery.com×2
• netdna.bootstrapcdn.com×2
• ajax.googleapis.com×1
• www.google.com×1

Social

• facebook
• youtube

Contact

Email

• wis@wis.no

Phone

• 978 670 709
• 4312.07.55537

DNS records live

NS

• ns-1095.awsdns-08.org
• ns-111.awsdns-13.com
• ns-1800.awsdns-33.co.uk
• ns-639.awsdns-15.net

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

• v=BIMI1;l=https://wis.no/filer/wis_logo.svg

Verified for

• Google

Email authentication strong

SPF

v=spf1 ip4:168.245.111.18 include:sendgrid.net include:_spf.google.com ip4:46.227.192.132 ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:postmester@wis.no

policy: quarantine

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkKvmOBKcmEzpjzJ+VLvQfDT3NwTTbf3R4UGU8Ju72yuBgQl70L2wsgX39XY8iFFLfCJ421EXCc8vVV…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gxoH4QvSDufVNb2wBrT8vRVVwoDjvxLL4BxnjqmVKfObHJ1FXFc0rBNTVPXhmopNuY8hVqQB1ouXXCi2f…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBsuTBjMBOC6lX9sIwFr86nNaGv6ph9UdAjFQBNbTVWLhFkgibe3CcRCfHXj7hashOcBIPQkN9f++kOT3EN0khrA…

selectors probed

HTTP security headers

Header hygiene 50/100 Checked live page: https://wis.no/

present

• strict-transport-security

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• youtube.com×1
• motigon.com×1
• facebook.com×1

Linked from (1)

• frivilligsentral.no×1