zentiva.pt

HTML metadata

Technology

jQuery

2.2.4 known XSS (<3.5)

Analytics

• Google Tag Manager

Cookie consent

• Cookiebot

Fonts

• Google Fonts

Third-party hosts loaded (6)

• cdnjs.cloudflare.com×1
• consentcdn.cookiebot.com×1
• fonts.googleapis.com×1
• i.ytimg.com×1
• imgsct.cookiebot.com×1
• www.googletagmanager.com×1

Social

• linkedin
• youtube

DNS records live

NS

• pdns1.ultradns.net
• pdns2.ultradns.net
• pdns3.ultradns.org
• pdns4.ultradns.org
• pdns5.ultradns.info
• pdns6.ultradns.co.uk

MX

• 1 zentiva-pt.mail.protection.outlook.com
• 5 mail.idp365.net

TXT

• _xs395bi0rfmnj22if32pqfc1vw0c0jo
• 6dq9rqbl3606jflxv1g2lkbml2hcgqp7

Verified for

• Google
• Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:re+tvfcs2dgg7l@dmarc.postmarkapp.com,mailto:glb_dmarc_report@zentiva.com; ruf=mailto:glb_dmarc_report@zentiva.com;

policy: quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDS2LlnuP30N4wPjHq689WzxrVujg2NM89V7rV3BYssvCJmEBEXMcU8Z2lkP29SIhvOwA6jbopXrg1c1Q3NBg…
• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBDI1St4kAEGd2y9rRX3RuC9RPOoP3Tcc3YoFVirZZ7gdAxOqaP1rpnKLqvmFsYSQ9n0S7IaQnEeJxzIeae6…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.zentiva.pt/

present

• strict-transport-security
• content-security-policy-report-only
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• missing Content Security Policy

Links to (14)

• zentiva.pl×1
• zentiva.nl×1
• zentiva.it×1
• zentiva.fr×1
• zentiva.es×1
• zentiva.dk×1
• zentiva.de×1
• zentiva.cz×1
• zentiva.com×1
• zentiva.co.uk×1
• zentiva.ch×1
• youtube.com×1
• myworkdayjobs.com×1
• linkedin.com×1

Linked from (5)

• zentiva.dk×1
• zentiva.pl×1
• zentiva.ch×1
• zentiva.es×1
• zentiva.co.uk×1