workmatters.ie

HTML metadata

Technology

CDN

Cloudflare

CMS

WordPress

PHP

8.2.31 security-only

jQuery

3.7.1

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (5)

• fonts.googleapis.com×3
• www.googletagmanager.com×3
• cdn.jsdelivr.net×2
• js.stripe.com×2
• www.google.com×1

Social

• twitter
• linkedin

Contact

Phone

• +35314434150

DNS records live

NS

• austin.ns.cloudflare.com
• dahlia.ns.cloudflare.com

MX

• 10 workmatters-ie.mail.protection.outlook.com

Verified for

• Google
• Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:mailgun.org include:sendgrid.net include:_spf.esperto.one include:26790049.spf02.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=none; ruf=mailto:devs@engagebay.com

policy: none (monitoring only)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sireXjWVcTIMj2ccKaIZLkiFsGkTrcjjcQBtYDpqAk1xFXFtnG6l94iP72H5qZQ6yIJ2R2BeTZ1uPH5n1…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDI0hyeadT0WFxoXKN+wmbxkFnt0cu46tUzDHfG7V4gwhuB7+Lzzs+yckv0JeHe1IGfFGPv7/KqSstP4Lydhzdr9b…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://workmatters.ie/

present

• content-security-policy

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (9)

• wponetap.com×1
• vimeo.com×1
• twitter.com×1
• successstore.com×1
• linkedin.com×1
• juvo.ie×1
• bookdepository.com×1
• amazon.com×1
• amazon.co.uk×1

Linked from (1)

• designwave.ie×1