indexo.dev

zstio.net.pl

.pl crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 1250 ms crawled 2026-06-01

PL · 195.2.222.200 · AS203417 LH.pl Sp. z o.o.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Zespół Szkół Technicznych i Ogólnokształcących z Oddziałami Integracyjnymi im. Stanisława Staszica w Białymstoku – Przestrzeń, w której możesz rozwinąć skrzydła. Odkryj i realizuj swoje pasje. TECHNIK INFORMATYK. TECHNIK PRZEMYSŁU MODY. TECHNIK HOTELARSTWA. TECHNIK …
Language
pl-PL
Generator
WordPress 7.0
Canonical
https://zstio.net.pl/
Feeds

Technology

Server
Apache
CMS
WordPress 7.0
jQuery
3.7.1
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • cdnjs.cloudflare.com×2
  • fonts.googleapis.com×2

Social

Contact

Email
Phone

DNS records live

NS
  • ns.lh.pl
  • ns2.lighthosting.net
MX
  • 5 mail20.lh.pl

Email authentication strong

SPF
v=spf1 include:_spf.lh.pl -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc-report@lh.pl;
policy: quarantine
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjxnHPLnxYCCRW+67WSTwFVThUuO5OTlpJN6e+g4nNc2TyldFoej+O50xezJYCt7elYBtKOTV9wR1Q…
selectors probed

Certificate (current)

E7
from 2026-05-20 to 2026-08-18
Expires in 68 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://zstio.net.pl/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://www.google.com https://maps.googleapis.com https://maps.gstatic.com https://www.gstatic.com; img-src 'self' data: blob: https://www.google.com https://maps.googleapis.com https://maps.gstatic.com https://www.gstatic.com; object-src 'self' data: blob: https://www.google.com https://maps.googleapis.com https://maps.gstatic.com https://www.gstatic.com; frame-src 'self' data: blob: https://www.google.com https://maps.googleapis.com https://maps.gstatic.com https://www.gstatic.com;

Links to (7)

Linked from (1)

Use this data via API

Everything on this page for zstio.net.pl is available as JSON from the indexo.dev REST & MCP API.

curl "https://indexo.dev/api/v1/domains/zstio.net.pl" \
  -H "X-API-Key: idx_..."

Read the docs & get a free key →