witnet.io

HTML metadata

Technology

CDN

Cloudflare

CMS

Nuxt

Fonts

• Google Fonts

Third-party hosts loaded (1)

• fonts.googleapis.com×1

Social

• twitter
• telegram
• discord
• github
• medium

DNS records live

NS

• jason.ns.cloudflare.com
• rafe.ns.cloudflare.com

MX

• 1 aspmx.l.google.com
• 10 aspmx2.googlemail.com
• 10 aspmx3.googlemail.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

• google-site-verification=oTWMj57NPiesO7TRbniFOIBqUHWfhG7ZsVWEE2RABks
• google-site-verification=mnPAeYP6xUxjS8aiUtuy3T4IQBmGywe-hhN2H8HLOf4

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:spf.mandrillapp.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:info@witnet.io

policy: quarantine

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cU21Mv4zesByKEupRc+/Q6t8Iz8Dr8M1XhuGRugA/J/ICbwQulGhiGkuur4sv7grrCn+ScDBD72o+…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://witnet.io/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy
• cross-origin-opener-policy
• cross-origin-embedder-policy
• cross-origin-resource-policy

findings

• short HSTS max-age
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (11)

• 1inch.io×1
• dextools.io×1
• docker.com×1
• github.com×1
• medium.com×1
• mywitwallet.com×1
• npmjs.com×1
• sheikah.app×1
• t.me×1
• twitter.com×1
• uniswap.org×1

Linked from (1)

• red4sec.com×1