All-in-one free web application security tool. Web application vulnerability and privacy scanner with support for HTTP cookies, Flash, HTML5 localStorage, sessionStorage, CANVAS, Supercookies, Evercookies. Includes a free SSL/TLS, HTML and HTTP vulnerability scanner and URL malware scanner.
Keywords: mrq ttm coin down euro fund media token btcusd etcusd ethusd fusion iotusd ltcusd xrpusd bitcoin ethereum unchanged declaration investingcom
Last fetched: 2018-05-04T11:19:18.651830+00:00
HTTP status: 5 Sub-resource URL
The header exposes web server version details. These server no purpose apart from making life of security auditors and hackers easier, leading them straight to exploits for this particular version of product-1
Announces web server software and optionally version details.Read more...
Content-Security-Policy: upgrade-insecure-requests; block-all-mixed-content
Content Security Policy is used by a web server to declare a list of trusted content types (images, scripts, media etc) and origins from which they can be safely loaded as intended by the website authors. The
Content-Security-Policy-Report-Only header instruct the browser to enable CSP in enforcement mode.
Transport Layer Security (TLS) is enabled+2
X-Frame-Options header is missing
X-XSS-Protection header is missing
X-Content-Type-Options header is missing
base-uri allows attackers to inject
base tags which override the base URI to an attacker-controlled origin. Set to
'none' unless you need to handle tricky relative URLs scheme
block-all-mixed-content are present but they are mutually exclusive. The latter will be ignored
The website uses the following advertisement publisher ids: