Check DNS, Urls + Redirects, Certificates and Content of your Website


 

 

X

 

DNS-problem - authoritative Nameserver refused, not defined or timeout, 4 invalid Headers

 

Checked:
01.10.2024 12:20:42

 

Older results

No older results found

 

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
inclusionmonth.com
A
172.105.52.36
Mumbai/Maharashtra/India (IN) - Akamai Technologies
Hostname: li2059-36.members.linode.com
yes
1
0

AAAA

yes


www.inclusionmonth.com
CNAME
@
yes
1
0
*.inclusionmonth.com
A
Name Error
yes



AAAA
Name Error
yes



CNAME
Name Error
yes


 

2. DNSSEC

Zone (*)DNSSEC - Informations


Zone: (root)

(root)
1 DS RR published






DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=






Status: Valid because published






3 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 20038, Flags 256






Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 61050, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 10.10.2024, 00:00:00 +, Signature-Inception: 19.09.2024, 00:00:00 +, KeyTag 20326, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: com

com
1 DS RR in the parent zone found






DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=






1 RRSIG RR to validate DS RR found






RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 13.10.2024, 20:00:00 +, Signature-Inception: 30.09.2024, 19:00:00 +, KeyTag 20038, Signer-Name: (root)






Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20038 used to validate the DS RRSet in the parent zone






2 DNSKEY RR found






Public Key with Algorithm 13, KeyTag 19718, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 13, KeyTag 59354, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner com., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 09.10.2024, 14:02:35 +, Signature-Inception: 24.09.2024, 13:57:35 +, KeyTag 19718, Signer-Name: com






Status: Good - Algorithmus 13 and DNSKEY with KeyTag 19718 used to validate the DNSKEY RRSet






Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 19718, DigestType 2 and Digest "isuwzSj0ElCoCkkTiUJNNBUi2Uaw2gwCkfLT13HXgFo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: inclusionmonth.com

inclusionmonth.com
0 DS RR in the parent zone found






DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "v4g4lg9cmom9c5e700veer15fj6po0ej" between the hashed NSEC3-owner "v4g4ivec2fjoice7f0mdhg4d9lgqgikc" and the hashed NextOwner "v4g4t615ok7jecg1rudapqoqkr98tp2t". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner v4g4ivec2fjoice7f0mdhg4d9lgqgikc.com., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 05.10.2024, 01:02:05 +, Signature-Inception: 27.09.2024, 23:52:05 +, KeyTag 59354, Signer-Name: com






DS-Query in the parent zone sends valid NSEC3 RR with the Hash "ck0pojmg874ljref7efn8430qvit8bsm" as Owner. That's the Hash of "com" with the NextHashedOwnerName "ck0q3udg8cekkae7rukpgct1dvssh8ll". So that domain name is the Closest Encloser of "inclusionmonth.com". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner ck0pojmg874ljref7efn8430qvit8bsm.com., Algorithm: 13, 2 Labels, original TTL: 86400 sec, Signature-expiration: 07.10.2024, 00:26:10 +, Signature-Inception: 29.09.2024, 23:16:10 +, KeyTag 59354, Signer-Name: com






0 DNSKEY RR found









Zone: www.inclusionmonth.com

www.inclusionmonth.com
0 DS RR in the parent zone found

 

3. Name Servers

DomainNameserverNS-IP
inclusionmonth.com
  ns1.dns-parking.com / 67m80
162.159.24.201
Toronto/Ontario/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::a29f:18c9
San Francisco/California/United States (US) - Cloudflare


  ns2.dns-parking.com / 67m48
162.159.25.42
Toronto/Ontario/Canada (CA) - Cloudflare, Inc.


 
2400:cb00:2049:1::a29f:192a
San Francisco/California/United States (US) - Cloudflare

com
  a.gtld-servers.net / nnn1-par6


  b.gtld-servers.net / nnn1-elwaw4


  c.gtld-servers.net / nnn1-defra-5


  d.gtld-servers.net / nnn1-par6


  e.gtld-servers.net / nnn1-par6


  f.gtld-servers.net / nnn1-defra-4


  g.gtld-servers.net / nnn1-defra-4


  h.gtld-servers.net / nnn1-defra-4


  i.gtld-servers.net / nnn1-defra-4


  j.gtld-servers.net / nnn1-frmrs-2


  k.gtld-servers.net / nnn1-ein3


  l.gtld-servers.net / nnn1-frmrs-2


  m.gtld-servers.net / nnn1-frmrs-2

 

4. SOA-Entries


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1727778017
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:10


Domain:com
Zone-Name:com
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1727778032
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:3


Domain:inclusionmonth.com
Zone-Name:inclusionmonth.com
Primary:ns1.dns-parking.com
Mail:dns.hostinger.com
Serial:2024092601
Refresh:10000
Retry:2400
Expire:604800
TTL:600
num Entries:4


5. Screenshots

Startaddress: https://inclusionmonth.com/, address used: https://inclusionmonth.com/, Screenshot created 2024-10-01 12:24:46 +00:0 url is insecure, certificate invalid

 

Mobil (412px x 732px)

 

1083 milliseconds

 

Screenshot mobile - https://inclusionmonth.com/
Mobil + Landscape (732px x 412px)

 

1104 milliseconds

 

Screenshot mobile landscape - https://inclusionmonth.com/
Screen (1280px x 1680px)

 

1203 milliseconds

 

Screenshot Desktop - https://inclusionmonth.com/

 

Mobile- and other Chrome-Checks


widthheight
visual Viewport396732
content Size396969

 

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

 

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://inclusionmonth.com/
172.105.52.36
301
https://inclusionmonth.com/
Html is minified: 108.54 %
0.263
A-
Server: nginx
Date: Tue, 01 Oct 2024 10:21:18 GMT
Connection: keep-alive
Location: https://inclusionmonth.com/
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
X-XSS-Protection: 1; mode=block,1; mode=block
X-Permitted-Cross-Domain-Policies: master-only,master-only
X-Frame-Options: SAMEORIGIN
Content-Type: text/html
Content-Length: 178

• https://inclusionmonth.com/
172.105.52.36 gzip used - 1988 / 4281 - 53.56 %
Inline-JavaScript (∑/total): 1/162 Inline-CSS (∑/total): 0/0
200

Html is minified: 135.78 %
Other inline scripts (∑/total): 0/0
6.217
N-
Certificate error: RemoteCertificateChainErrors
Server: nginx
Date: Tue, 01 Oct 2024 10:21:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=ldfqv0iitoct5o9r2t7nvovjem; path=/
Cache-Control: no-store, must-revalidate, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
X-XSS-Protection: 1; mode=block,1; mode=block
X-Permitted-Cross-Domain-Policies: master-only,master-only
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Content-Encoding: gzip
Content-Length: 1988

• http://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
172.105.52.36
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Html is minified: 108.54 %
Other inline scripts (∑/total): 0/0
0.123
A-
Visible Content:
Server: nginx
Date: Tue, 01 Oct 2024 10:21:26 GMT
Connection: keep-alive
Location: https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
X-XSS-Protection: 1; mode=block,1; mode=block
X-Permitted-Cross-Domain-Policies: master-only,master-only
X-Frame-Options: SAMEORIGIN
Content-Type: text/html
Content-Length: 178

• https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
gzip used - 1988 / 4281 - 53.56 %
Inline-JavaScript (∑/total): 1/162 Inline-CSS (∑/total): 0/0
200

Html is minified: 135.78 %
Other inline scripts (∑/total): 0/0
5.280
N-
Certificate error: RemoteCertificateChainErrors
Visible Content:
Server: nginx
Date: Tue, 01 Oct 2024 10:21:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=l9rmrm0sqd9saduhml6dg40q26; path=/
Cache-Control: no-store, must-revalidate, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
X-XSS-Protection: 1; mode=block,1; mode=block
X-Permitted-Cross-Domain-Policies: master-only,master-only
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Content-Encoding: gzip
Content-Length: 1988

• https://172.105.52.36/
172.105.52.36 gzip used - 22788 / 69259 - 67.10 %
Inline-JavaScript (∑/total): 2/62644 Inline-CSS (∑/total): 0/0
200

Html is minified: 3537.23 %
Other inline scripts (∑/total): 0/0
6.657
N-
Certificate error: RemoteCertificateNameMismatch
Server: nginx
Date: Tue, 01 Oct 2024 10:21:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff,nosniff
X-XSS-Protection: 1; mode=block,1; mode=block
X-Permitted-Cross-Domain-Policies: master-only,master-only
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Content-Encoding: gzip
Content-Length: 22788

 

7. Comments


1. General Results, most used to calculate the result

Aname "inclusionmonth.com" is domain, public suffix is ".com", top-level-domain is ".com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .com-domains preloaded: 94787 (complete: 245733)
AGood: All ip addresses are public addresses
Warning: Only one ip address found: inclusionmonth.com has only one ip address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: inclusionmonth.com has no ipv6 address.
AGood: No asked Authoritative Name Server had a timeout
AGood: destination is https
AGood - only one version with Http-Status 200
AGood: one preferred version: non-www is preferred
AGood: No cookie sent via http.
AGood: every https has a Strict Transport Security Header
AGood: HSTS max-age is long enough, 31536000 seconds = 365 days
AGood: HSTS has includeSubdomains - directive
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://inclusionmonth.com/ 172.105.52.36
301
https://inclusionmonth.com/
Correct redirect http - https with the same domain name
Bhttps://inclusionmonth.com/ 172.105.52.36
200
max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Critical: HSTS-Header has Parse-Errors. Comma found, but Comma not allowed. Perhaps more then one HSTS-Header., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Critical: HSTS-Header has Parse-Errors. Comma found, but Comma not allowed. Perhaps more then one HSTS-Header., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://172.105.52.36/ 172.105.52.36
200
max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Critical: HSTS-Header has Parse-Errors. Comma found, but Comma not allowed. Perhaps more then one HSTS-Header., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://inclusionmonth.com/ 172.105.52.36
200
PHPSESSID=ldfqv0iitoct5o9r2t7nvovjem; path=/
Cookie sent via https, but not marked as secure
Bhttps://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
PHPSESSID=l9rmrm0sqd9saduhml6dg40q26; path=/
Cookie sent via https, but not marked as secure
Bhttps://inclusionmonth.com/ 172.105.52.36
200
PHPSESSID=ldfqv0iitoct5o9r2t7nvovjem; path=/
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Bhttps://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
PHPSESSID=l9rmrm0sqd9saduhml6dg40q26; path=/
Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
Ihttps://inclusionmonth.com/ 172.105.52.36
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Ihttps://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Nhttps://inclusionmonth.com/ 172.105.52.36
200

Error - Certificate isn't trusted, RemoteCertificateChainErrors
Nhttps://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Error - Certificate isn't trusted, RemoteCertificateChainErrors
Nhttps://172.105.52.36/ 172.105.52.36
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Oinclusionmonth.com / 172.105.52.36 / 443


Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 6 Cipher Suites without Forward Secrecy found
XFatal: Wrong CNAME definition found.Domain name: www.inclusionmonth.com, CNAME: @: Invalid characters in domain name found. Only a-z, 0-9, ., _ or - allowed.
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain inclusionmonth.com, 1 ip addresses.
BNo _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.inclusionmonth.com

2. Header-Checks (Cross-Origin-* headers are alpha - started 2024-06-05)

Finclusionmonth.com 172.105.52.36
X-Content-Type-Options
Critical: Header with syntax errors found: nosniff,nosniff
F

Critical: Duplicated values found. Looks like the page sends multiple headers with the same name. nosniff,nosniff
F

Critical: Unknown token found. Standard-token with additional characters are not defined. nosniff,nosniff
F

Critical: Unknown token found. Standard-token with additional characters are not defined. nosniff,nosniff
A
X-Frame-Options
Ok: Header without syntax errors found: SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block,1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block,1; mode=block
F

Critical: Unknown token found. Standard-token with additional characters are not defined. mode=block,1
F

Critical: Unknown token found. Standard-token with additional characters are not defined. mode=block,1
Finclusionmonth.com 172.105.52.36
Content-Security-Policy
Critical: Missing Header:
Finclusionmonth.com 172.105.52.36
Referrer-Policy
Critical: Missing Header:
Finclusionmonth.com 172.105.52.36
Permissions-Policy
Critical: Missing Header:
Binclusionmonth.com 172.105.52.36
Cross-Origin-Embedder-Policy
Info: Missing Header
Binclusionmonth.com 172.105.52.36
Cross-Origin-Opener-Policy
Info: Missing Header
Binclusionmonth.com 172.105.52.36
Cross-Origin-Resource-Policy
Info: Missing Header

3. DNS- and NameServer - Checks

AInfo:: 2 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 2 Name Servers.
AInfo:: 2 Queries complete, 2 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
AGood: Some ip addresses of name servers found with the minimum of two DNS Queries. One to find the TLD-Zone, one to ask the TLD-Zone.ns1.dns-parking.com (162.159.24.201, 2400:cb00:2049:1::a29f:18c9), ns2.dns-parking.com (162.159.25.42, 2400:cb00:2049:1::a29f:192a)
AGood (1 - 3.0):: An average of 1.0 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 2 different Name Servers found: ns1.dns-parking.com, ns2.dns-parking.com, 2 Name Servers included in Delegation: ns1.dns-parking.com, ns2.dns-parking.com, 2 Name Servers included in 1 Zone definitions: ns1.dns-parking.com, ns2.dns-parking.com, 1 Name Servers listed in SOA.Primary: ns1.dns-parking.com.
AGood: Only one SOA.Primary Name Server found.: ns1.dns-parking.com.
AGood: SOA.Primary Name Server included in the delegation set.: ns1.dns-parking.com.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns1.dns-parking.com, ns2.dns-parking.com
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 2 different Name Servers found
AGood: All name servers have ipv4- and ipv6-addresses.: 2 different Name Servers found
Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 2 Name Servers, 1 Top Level Domain: com
Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: dns-parking.com
AGood: Name servers with different Country locations found: 2 Name Servers, 2 Countries: CA, US
AInfo: Ipv4-Subnet-list: 2 Name Servers, 1 different subnets (first Byte): 162., 1 different subnets (first two Bytes): 162.159., 2 different subnets (first three Bytes): 162.159.24., 162.159.25.
AGood: Name Server IPv4-addresses from different subnet found:
AInfo: IPv6-Subnet-list: 2 Name Servers with IPv6, 1 different subnets (first block): 2400:, 1 different subnets (first two blocks): 2400:cb00:, 1 different subnets (first three blocks): 2400:cb00:2049:, 1 different subnets (first four blocks): 2400:cb00:2049:0001:
Fatal: All Name Server IPv6 addresses from the same subnet.
AGood: Nameserver supports TCP connections: 4 good Nameserver
AGood: Nameserver supports Echo Capitalization: 4 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 4 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 13 good Nameserver
Nameserver doesn't pass all EDNS-Checks: ns1.dns-parking.com / 162.159.24.201: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (67m80). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns1.dns-parking.com / 2400:cb00:2049:1::a29f:18c9: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (931m81). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.dns-parking.com / 162.159.25.42: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (67m48). COOKIE: ok. CLIENTSUBNET: ok.
Nameserver doesn't pass all EDNS-Checks: ns2.dns-parking.com / 2400:cb00:2049:1::a29f:192a: OP100: ok. FLAGS: ok. V1: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. V1OP100: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found, no OPT100 expected, no OPT100 found. V1FLAGS: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. DNSSEC: ok. V1DNSSEC: SOA NOT expected, but found, BADVER expected, NOERR found, Version 0 expectend and found. NSID: ok (930m11). COOKIE: ok. CLIENTSUBNET: ok.
AGood: All SOA have the same Serial Number
AGood: CAA entries found, creating certificate is limited: comodoca.com is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: digicert.com is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: globalsign.com is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: pki.goog is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: sectigo.com is allowed to create certificates
AGood: CAA entries found, creating certificate is limited: comodoca.com is allowed to create wildcard-certificates
AGood: CAA entries found, creating certificate is limited: digicert.com is allowed to create wildcard-certificates
AGood: CAA entries found, creating certificate is limited: globalsign.com is allowed to create wildcard-certificates
AGood: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create wildcard-certificates
AGood: CAA entries found, creating certificate is limited: pki.goog is allowed to create wildcard-certificates
AGood: CAA entries found, creating certificate is limited: sectigo.com is allowed to create wildcard-certificates

4. Content- and Performance-critical Checks

AGood: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
https://inclusionmonth.com/ 172.105.52.36
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://172.105.52.36/ 172.105.52.36
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://inclusionmonth.com/ 172.105.52.36
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://172.105.52.36/ 172.105.52.36
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
https://inclusionmonth.com/ 172.105.52.36
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
https://172.105.52.36/ 172.105.52.36
200

Warning: Https connections (Standard Port 443) found without support of the http/2 protocol via ALPN. Http/2 is the new Http-Version (old: http 1.1) with some important new features. Update your server software so http/2 is available. Only one TCP-connection per Server (that's a performance boost), Header-Compression and Server Pushs are available. Domain Sharding and Inline-CSS/Javascript shouldn't used with http/2.
AGood: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
https://inclusionmonth.com/ 172.105.52.36
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
https://172.105.52.36/ 172.105.52.36
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
Warning: CSS / JavaScript found without Compression. Compress these ressources, gzip, deflate, br are checked. 6 external CSS / JavaScript files without Compression found - 20 with Compression, 26 complete
AGood: All images with internal compression not compressed. Some Images (.png, .jpg, .jpeg, .webp, .gif) are already compressed, so an additional compression isn't helpful. 1 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) found without additional Compression. Not required because these images are already compressed
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 7 external CSS / JavaScript files without Cache-Control-Header, 1 with Cache-Control, but no max-age, 6 with Cache-Control max-age too short (minimum 7 days), 14 with Cache-Control long enough, 28 complete.
Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 1 image files without Cache-Control-Header, 1 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 2 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 3 img-elements without alt-attribute, 0 img-elements with empty alt-attribute found.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
http://inclusionmonth.com/ 172.105.52.36
301
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Parse Error - Header can't be parsed
https://inclusionmonth.com/ 172.105.52.36
200
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Parse Error - Header can't be parsed
http://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 172.105.52.36
301
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Parse Error - Header can't be parsed
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Parse Error - Header can't be parsed
https://172.105.52.36/ 172.105.52.36
200
Strict-Transport-Security: max-age=31536000; includeSubDomains,max-age=31536000; includeSubDomains
Parse Error - Header can't be parsed
http://inclusionmonth.com/ 172.105.52.36
301

Warning: HSTS header sent via http has no effect
ADuration: 251140 milliseconds, 251.140 seconds

 

8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
inclusionmonth.com
172.105.52.36
443
Certificate/chain invalid
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
inclusionmonth.com
172.105.52.36
443
Certificate/chain invalid
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=inclusionmonth.com


2CN=R10, O=Let's Encrypt, C=US


inclusionmonth.com
inclusionmonth.com
443
Certificate/chain invalid
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

inclusionmonth.com
inclusionmonth.com
443
Certificate/chain invalid
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=inclusionmonth.com


2CN=R10, O=Let's Encrypt, C=US


172.105.52.36
172.105.52.36
443
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

172.105.52.36
172.105.52.36
443
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=aksharganesh.in


2CN=R10, O=Let's Encrypt, C=US

 

9. Certificates

1.
1.
CN=inclusionmonth.com
02.07.2024
30.09.2024
7 days expired
inclusionmonth.com, www.inclusionmonth.com - 2 entries
1.
1.
CN=inclusionmonth.com
02.07.2024

30.09.2024
7 days expired


inclusionmonth.com, www.inclusionmonth.com - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0329D1A1A067794DAC3296728B754DD1017F
Thumbprint:6E3B3EE08A2FF53BDE41B46E69EA8671156FA786
SHA256 / Certificate:glXhSyxcWKxt19SN4SYAhdEp4Yt3f76Gnwe0rjGqTTs=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):61108b757365ae1ca9b101c67e14f3e006c8fb34b6b98f4864086b4013ae4f89
SHA256 hex / Subject Public Key Information (SPKI):61108b757365ae1ca9b101c67e14f3e006c8fb34b6b98f4864086b4013ae4f89 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://r10.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)


NotTimeValid: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.


2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024
13.03.2027
expires in 887 days


2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024

13.03.2027
expires in 887 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4BA85293F79A2FA273064BA8048D75D0
Thumbprint:00ABEFD055F9A9C784FFDEABD1DCDD8FED741436
SHA256 / Certificate:nXw/GqatKy7A1c8eJG+NmubLyf0HVa03u5dLHy+2A/M=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):Error find_SubjectPublicKeyInfo_in_Certificate - no result found
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)




3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 3892 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 3892 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




2.
1.
CN=aksharganesh.in
05.09.2024
04.12.2024
expires in 58 days
aksharganesh.in, www.aksharganesh.in - 2 entries
2.
1.
CN=aksharganesh.in
05.09.2024

04.12.2024
expires in 58 days


aksharganesh.in, www.aksharganesh.in - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:032C0844591CDD929DCA9A195B502ED0FB19
Thumbprint:A74D0CD5A1BDB497377866D306F199BF62743E99
SHA256 / Certificate:9yU5h2qfTmkgrdePNQxxFrFfXGuyjmIs3QdV7UEqu8E=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):55bd5cfc728aa376a042c7d12e0259cf951375683ea139d4be0220cafb994548
SHA256 hex / Subject Public Key Information (SPKI):55bd5cfc728aa376a042c7d12e0259cf951375683ea139d4be0220cafb994548 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r10.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024
13.03.2027
expires in 887 days


2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024

13.03.2027
expires in 887 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4BA85293F79A2FA273064BA8048D75D0
Thumbprint:00ABEFD055F9A9C784FFDEABD1DCDD8FED741436
SHA256 / Certificate:nXw/GqatKy7A1c8eJG+NmubLyf0HVa03u5dLHy+2A/M=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):Error find_SubjectPublicKeyInfo_in_Certificate - no result found
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)




3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 3892 days


3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 3892 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




 

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found

 

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

 

11. Html-Content - Entries

Summary


Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://inclusionmonth.com/
172.105.52.36
a

2

0


0
0
0


img

1
15,673 Bytes
0
1
0
0
0
0


link
stylesheet
7
44,644 Bytes
0
1
6
4
0
1
-3

meta
other
3

0


0
0
0


script

7
209,344 Bytes
7
0
7
5
0
3
-2
https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
a

2

0


0
0
0


img

1
1,988 Bytes
0
1
0
0
0
0


link
stylesheet
7
45,779 Bytes
0
1
6
4
0
1
-3

meta
other
3

0


0
0
0


script

7
209,345 Bytes
7
0
7
5
0
3
-2
https://172.105.52.36/
172.105.52.36
a

1

0


0
0
0


form

1

0


0
0
0


img

1

0


0
0
0


link
stylesheet
4

0


0
0
0


meta
other
2

0


0
0
0


script

7

0


0
0
0

 

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://inclusionmonth.com/
172.105.52.36
a

select_frame.php


1
ok















a

wall.php


1
ok















img
src
assets/logo_top.png
200

1
ok
no alt-Attributeimage/png
missing X-Content-Type-Options nosniff





No Cache-Control header
No Compression - 15673 Bytes






ETag: "66797838-3d39"



link
stylesheet
custom.css
200

1
ok
text/css
missing X-Content-Type-Options nosniff





No Cache-Control - header
853 Bytes






ETag: "6679997d-355"

local SRI possible, possible hash-values:

 

sha256-37ckCq5EywORNlu0qXbWCvE4i6R7Zyz4fsgAYVS3yLI=
sha384-MOrkIRXfbszrUOk7u2Tz8TfiR/Eq2O+nJg6xDZ0uTZ2tmzXNvLfWS8ojI5nTHfGj
sha512-RUSAN0j4c6x82oXkwutWVcu9sMn3fvtfvGZpjpMfBG/vgT9LMhayF+S9yj+8hCscLfLbwClQ6RKFnIF584nAGQ==

 

<link rel="stylesheet" href="custom.css" crossorigin="anonymous" integrity="sha256-37ckCq5EywORNlu0qXbWCvE4i6R7Zyz4fsgAYVS3yLI=" />


Content loaded via url("...")

 

assets/bg.png3
assets/bg_m.png1

link
stylesheet
https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/css/select2.min.css
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable - with long duration found.
Compression (br): 2372/15823 Bytes






ETag: W/"3dcf-yUSO+/Irxvb7u7/rvWVmQrqxN2c"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-kH9DlfVOJaHaEYFnLxpJjpiyb3v8bctsIJpzdHJFHkk=
sha384-QyBj6h6db75/JDTyCPXOPf/LKz7SKinEvgKVewS45N04pLBCHyZTXcmPccj9b65R
sha512-yI2XOLiLTQtFA9IYePU0Q1Wt0Mjm/UkmlKMy4TU4oNXEws0LybqbifbO8t9rEIU65qdmtomQEQ+b3XfLfCzNaw==

 

<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/css/select2.min.css" crossorigin="anonymous" integrity="sha256-kH9DlfVOJaHaEYFnLxpJjpiyb3v8bctsIJpzdHJFHkk=" />



link
stylesheet
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Cache-Control: public, max-age=30672000 - with long duration found.
Compression (br): 5631/31000 Bytes






ETag: "5eb03e5f-7918"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-eZrrJcwDc/3uDhsdt61sL2oOBY362qM3lon1gyExkL0=
sha384-wvfXpqpZZVQGK6TAh5PVlGOfQNHSoD2xbE+QkPxCAFlNEevoEH3Sl0sibVcOQVnN
sha512-SfTiTlX6kk+qitfevl/7LibUOeJWlt9rbyDn92a1DqWOw9vWG2MFoays0sgObmWazO5BQPiFucnnEAjpAB+/Sw==

 

<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css" crossorigin="anonymous" integrity="sha256-eZrrJcwDc/3uDhsdt61sL2oOBY362qM3lon1gyExkL0=" />


Content loaded via url("...")

 

../fonts/fontawesome-webfont.eot?#iefix&v=4.7.01
../fonts/fontawesome-webfont.eot?v=4.7.01
../fonts/fontawesome-webfont.svg?v=4.7.0#fontawesomeregular1
../fonts/fontawesome-webfont.ttf?v=4.7.01
../fonts/fontawesome-webfont.woff?v=4.7.01
../fonts/fontawesome-webfont.woff2?v=4.7.01

link
stylesheet
https://fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Compression (gzip): 1837/23326 Bytes






Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-3IpJirCAwM0/blQQQRevO9laPHdq4kj7TfnlV144v1E=
sha384-Z54UjXdZBOckLar5s+6mscgMALAQjwaG9VNHKr7DROmV6pQIax+cjWgxNXVdewQ/
sha512-Li8Wf07SoVuXipMNnRbV/oZHsKRJ3T3HA6n5gzaHDt2DN15ykufyJiM3MrlEwrGx+EkbBo8KXwu0/vPd4ML6Gw==

 

<link rel="stylesheet" href="https://fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap" crossorigin="anonymous" integrity="sha256-3IpJirCAwM0/blQQQRevO9laPHdq4kj7TfnlV144v1E=" />


Content loaded via url("...")

 

https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqW106F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtE6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtk6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtU6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWu06F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWvU6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWxU6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff22

link
stylesheet
https://shareapic.in/css/cropper.min.css
200

1
ok
text/css
missing X-Content-Type-Options nosniff





No Cache-Control - header
Compression required: 3741 Bytes






ETag: "5eb3ef61-e9d"

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported


Content loaded via url("...")

 

data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAQMAAAAlPW0iAAAAA3NCSVQICAjb4U/gAAAABlBMVEXMzMz////TjRV2AAAACXBIWXMAAArrAAAK6wGCiw1aAAAAHHRFWHRTb2Z0d2FyZQBBZG9iZSBGaXJld29ya3MgQ1M26LyyjAAAABFJREFUCJlj+M/AgBVhF/0PAH6/D/HkDxOGAAAAAElFTkSuQmCC1

link
stylesheet
https://shareapic.in/css/custom.css
200

1
ok
text/css
missing X-Content-Type-Options nosniff





No Cache-Control - header
Compression required: 2510 Bytes






ETag: "649ec0d7-9ce"

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Cache-Control: public, max-age=31919000 - with long duration found.
Compression (br): 27700/159515 Bytes






ETag: W/"7cc40c199d128af6b01e74a28c5900b0"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-Vkoo8x4CGsO3+Hhxv8T/Q5PaXtkKtu6ug5TOeNV6gBiFeWPGFN9MuhOf23Q9Ifjh
crossorigin: anonymous
No SRI Parse errorvalid


Content loaded via url("...")

 

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5L3.75 4l-2.5 2.5L2.75 8l4-4-4-4z'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5L4.25 4l2.5-2.5L5.25 0z'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23dc3545' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23dc3545' stroke='none'/%3e%3c/svg%3e2
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(0, 0, 0, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(255, 255, 255, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='4' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23343a40' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e3
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%2328a745' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e2
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26l2.974 2.99L8 2.193z'/%3e%3c/svg%3e1

meta
charset
utf-8


2
ok















meta
viewport
width=device-width, initial-scale=1, shrink-to-fit=no


1
ok















script
src
https://cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable - with long duration found.
Compression (gzip): 7510/21257 Bytes






ETag: W/"5309-YvI45zNIx3656GVCan0bfeI8uy0"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-Q6E9RHvbIyZFJoft+2mJbHaEWldlvI9IOYy5n3zV9zzTtmI3UksdQRVvoxMfooAo
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/js/select2.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable - with long duration found.
Compression (gzip): 19914/72443 Bytes






ETag: W/"11afb-s2c359KmWBXECshtBQLwy7i5utg"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-nAS1wDQBPBqa1fnZq8wd1Z6CN+PgmHXLFdMo0g2pYf0=
sha384-G0GDRbnjku69lu+u8lJ7+Yk/tx6WoelGZWGMBYN7YzWdU+yu07XXjmO2rNS72/Px
sha512-qiKM6FJbI5x5+GL5CEbAUK0suRhjXVMRXnH/XQJaaQ6iQPf05XxbFBE4jS6VJzPGIRg7xREZTrGJIZVk1MLclA==

 

<script src="https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/js/select2.min.js" crossorigin="anonymous" integrity="sha256-nAS1wDQBPBqa1fnZq8wd1Z6CN+PgmHXLFdMo0g2pYf0=" />



script
src
https://code.jquery.com/jquery-3.7.1.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, stale-while-revalidate=604800 - with long duration found.
Compression (gzip): 30336/87533 Bytes






ETag: W/"28feccc0-155ed"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha256-/JqT3SQfawRcv/BIHPThkBvs0OEvtFFmqPF/lYI/Cxo=
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://shareapic.in/js/cropper.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


No Cache-Control - header
Compression required: 36905 Bytes






ETag: "5eb3ef61-9029"

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31919000 - with long duration found.
Compression (br): 17675/60010 Bytes






ETag: W/"61f338f870fcd0ff46362ef109d28533"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-wfSDF2E50Y2D1uUdj0O3uMBJnjuUD4Ih7YwaYd1iqfktj0Uod8GCExl3Og8ifwB6
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://twitter.github.io/typeahead.js/releases/latest/typeahead.bundle.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=600 - max-age too short.
Compression (gzip): 18062/96186 Bytes






ETag: W/"553ebb5a-177ba"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-kKEVA6cDIbLPVZjTtEWR2tCRYYh6Ax7jH2xOAZoIGcI=
sha384-up5m4qUNHDA0trts45bnm/JBBOfOMbOKtm/uAUX17yitl3RroI3RbrzmkWKBPT3w
sha512-OrFi/o1Q/S2pE3BW4onymzI8UXBwYLwaM64Dsp9Oe1LzC23Nh4pC8c8cJ1M8SmjErNEgMBrK5z5PNyIPxSiirg==

 

<script src="https://twitter.github.io/typeahead.js/releases/latest/typeahead.bundle.js" crossorigin="anonymous" integrity="sha256-kKEVA6cDIbLPVZjTtEWR2tCRYYh6Ax7jH2xOAZoIGcI=" />



script
src
https://www.googletagmanager.com/gtag/js?id=UA-1247215-34
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=900, private - max-age too short.
Compression (br): 78942/220750 Bytes






Server-Header Access-Control-Allow-Origin: https://inclusionmonth.com
Cross-Origin Resource Sharing (CORS) not supported


https://inclusionmonth.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de

a

select_frame.php


1
ok















a

wall.php


1
ok















img
src
assets/logo_top.png
200

1
ok
no alt-Attributetext/html; charset=UTF-8
missing X-Content-Type-Options nosniff





1988 Bytes








link
stylesheet
custom.css
200

1
ok
text/html; charset=UTF-8
missing X-Content-Type-Options nosniff





Cache-Control: no-store, must-revalidate, no-cache - max-age missing.
1988 Bytes






local SRI possible, possible hash-values:

 

sha256-Y2GaNMHIQfzkGBU+uzAlPmFwctPDmNeM0nhAXezy7wU=
sha384-cYBywwmO1oZ9aCsl+uASt2xLHWGo6T7tgQGHFIlFmEOQoJT/wPvAymhgTpVA8BZD
sha512-9u2zN/SRoeRnCMqlGZ71HYPFJh74Wz5zUA4ZBJGBxzZGw5edWcA+2pxw4yh4fSf/oxgzI5eKL7mAHr2BkdqkbQ==

 

<link rel="stylesheet" href="custom.css" crossorigin="anonymous" integrity="sha256-Y2GaNMHIQfzkGBU+uzAlPmFwctPDmNeM0nhAXezy7wU=" />


Content loaded via url("...")

 

./images/bg.jpg1

link
stylesheet
https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/css/select2.min.css
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable - with long duration found.
Compression (br): 2372/15823 Bytes






ETag: W/"3dcf-yUSO+/Irxvb7u7/rvWVmQrqxN2c"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-kH9DlfVOJaHaEYFnLxpJjpiyb3v8bctsIJpzdHJFHkk=
sha384-QyBj6h6db75/JDTyCPXOPf/LKz7SKinEvgKVewS45N04pLBCHyZTXcmPccj9b65R
sha512-yI2XOLiLTQtFA9IYePU0Q1Wt0Mjm/UkmlKMy4TU4oNXEws0LybqbifbO8t9rEIU65qdmtomQEQ+b3XfLfCzNaw==

 

<link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/css/select2.min.css" crossorigin="anonymous" integrity="sha256-kH9DlfVOJaHaEYFnLxpJjpiyb3v8bctsIJpzdHJFHkk=" />



link
stylesheet
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Cache-Control: public, max-age=30672000 - with long duration found.
Compression (br): 5631/31000 Bytes






ETag: "5eb03e5f-7918"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-eZrrJcwDc/3uDhsdt61sL2oOBY362qM3lon1gyExkL0=
sha384-wvfXpqpZZVQGK6TAh5PVlGOfQNHSoD2xbE+QkPxCAFlNEevoEH3Sl0sibVcOQVnN
sha512-SfTiTlX6kk+qitfevl/7LibUOeJWlt9rbyDn92a1DqWOw9vWG2MFoays0sgObmWazO5BQPiFucnnEAjpAB+/Sw==

 

<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css" crossorigin="anonymous" integrity="sha256-eZrrJcwDc/3uDhsdt61sL2oOBY362qM3lon1gyExkL0=" />


Content loaded via url("...")

 

../fonts/fontawesome-webfont.eot?#iefix&v=4.7.01
../fonts/fontawesome-webfont.eot?v=4.7.01
../fonts/fontawesome-webfont.svg?v=4.7.0#fontawesomeregular1
../fonts/fontawesome-webfont.ttf?v=4.7.01
../fonts/fontawesome-webfont.woff?v=4.7.01
../fonts/fontawesome-webfont.woff2?v=4.7.01

link
stylesheet
https://fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Compression (gzip): 1837/23326 Bytes






Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-3IpJirCAwM0/blQQQRevO9laPHdq4kj7TfnlV144v1E=
sha384-Z54UjXdZBOckLar5s+6mscgMALAQjwaG9VNHKr7DROmV6pQIax+cjWgxNXVdewQ/
sha512-Li8Wf07SoVuXipMNnRbV/oZHsKRJ3T3HA6n5gzaHDt2DN15ykufyJiM3MrlEwrGx+EkbBo8KXwu0/vPd4ML6Gw==

 

<link rel="stylesheet" href="https://fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap" crossorigin="anonymous" integrity="sha256-3IpJirCAwM0/blQQQRevO9laPHdq4kj7TfnlV144v1E=" />


Content loaded via url("...")

 

https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqW106F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWt06F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtE6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtk6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWtU6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWu06F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuk6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWvU6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWxU6F15M.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff22
https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff22

link
stylesheet
https://shareapic.in/css/cropper.min.css
200

1
ok
text/css
missing X-Content-Type-Options nosniff





No Cache-Control - header
Compression required: 3741 Bytes






ETag: "5eb3ef61-e9d"

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported


Content loaded via url("...")

 

data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAQMAAAAlPW0iAAAAA3NCSVQICAjb4U/gAAAABlBMVEXMzMz////TjRV2AAAACXBIWXMAAArrAAAK6wGCiw1aAAAAHHRFWHRTb2Z0d2FyZQBBZG9iZSBGaXJld29ya3MgQ1M26LyyjAAAABFJREFUCJlj+M/AgBVhF/0PAH6/D/HkDxOGAAAAAElFTkSuQmCC1

link
stylesheet
https://shareapic.in/css/custom.css
200

1
ok
text/css
missing X-Content-Type-Options nosniff





No Cache-Control - header
Compression required: 2510 Bytes






ETag: "649ec0d7-9ce"

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



link
stylesheet
https://stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Cache-Control: public, max-age=31919000 - with long duration found.
Compression (br): 27700/159515 Bytes






ETag: W/"7cc40c199d128af6b01e74a28c5900b0"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-Vkoo8x4CGsO3+Hhxv8T/Q5PaXtkKtu6ug5TOeNV6gBiFeWPGFN9MuhOf23Q9Ifjh
crossorigin: anonymous
No SRI Parse errorvalid


Content loaded via url("...")

 

data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M2.75 0l-1.5 1.5L3.75 4l-2.5 2.5L2.75 8l4-4-4-4z'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' fill='%23fff' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath d='M5.25 0l-4 4 4 4 1.5-1.5L4.25 4l2.5-2.5L5.25 0z'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' fill='none' stroke='%23dc3545' viewBox='0 0 12 12'%3e%3ccircle cx='6' cy='6' r='4.5'/%3e%3cpath stroke-linejoin='round' d='M5.8 3.6h.4L6 6.5z'/%3e%3ccircle cx='6' cy='8.2' r='.6' fill='%23dc3545' stroke='none'/%3e%3c/svg%3e2
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='-4 -4 8 8'%3e%3ccircle r='3' fill='%23fff'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(0, 0, 0, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='30' height='30' viewBox='0 0 30 30'%3e%3cpath stroke='rgba(255, 255, 255, 0.5)' stroke-linecap='round' stroke-miterlimit='10' stroke-width='2' d='M4 7h22M4 15h22M4 23h22'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='4' viewBox='0 0 4 4'%3e%3cpath stroke='%23fff' d='M0 2h4'/%3e%3c/svg%3e1
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='4' height='5' viewBox='0 0 4 5'%3e%3cpath fill='%23343a40' d='M2 0L0 2h4zm0 5L0 3h4z'/%3e%3c/svg%3e3
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%2328a745' d='M2.3 6.73L.6 4.53c-.4-1.04.46-1.4 1.1-.8l1.1 1.4 3.4-3.8c.6-.63 1.6-.27 1.2.7l-4 4.6c-.43.5-.8.4-1.1.1z'/%3e%3c/svg%3e2
data:image/svg+xml,%3csvg xmlns='http://www.w3.org/2000/svg' width='8' height='8' viewBox='0 0 8 8'%3e%3cpath fill='%23fff' d='M6.564.75l-3.59 3.612-1.538-1.55L0 4.26l2.974 2.99L8 2.193z'/%3e%3c/svg%3e1

meta
charset
utf-8


2
ok















meta
viewport
width=device-width, initial-scale=1, shrink-to-fit=no


1
ok















script
src
https://cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable - with long duration found.
Compression (gzip): 7510/21257 Bytes






ETag: W/"5309-YvI45zNIx3656GVCan0bfeI8uy0"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-Q6E9RHvbIyZFJoft+2mJbHaEWldlvI9IOYy5n3zV9zzTtmI3UksdQRVvoxMfooAo
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/js/select2.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable - with long duration found.
Compression (gzip): 19914/72443 Bytes






ETag: W/"11afb-s2c359KmWBXECshtBQLwy7i5utg"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-nAS1wDQBPBqa1fnZq8wd1Z6CN+PgmHXLFdMo0g2pYf0=
sha384-G0GDRbnjku69lu+u8lJ7+Yk/tx6WoelGZWGMBYN7YzWdU+yu07XXjmO2rNS72/Px
sha512-qiKM6FJbI5x5+GL5CEbAUK0suRhjXVMRXnH/XQJaaQ6iQPf05XxbFBE4jS6VJzPGIRg7xREZTrGJIZVk1MLclA==

 

<script src="https://cdn.jsdelivr.net/npm/select2@4.1.0-beta.1/dist/js/select2.min.js" crossorigin="anonymous" integrity="sha256-nAS1wDQBPBqa1fnZq8wd1Z6CN+PgmHXLFdMo0g2pYf0=" />



script
src
https://code.jquery.com/jquery-3.7.1.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, stale-while-revalidate=604800 - with long duration found.
Compression (gzip): 30336/87533 Bytes






ETag: W/"28feccc0-155ed"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha256-/JqT3SQfawRcv/BIHPThkBvs0OEvtFFmqPF/lYI/Cxo=
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://shareapic.in/js/cropper.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


No Cache-Control - header
Compression required: 36905 Bytes






ETag: "5eb3ef61-9029"

Server-Header Access-Control-Allow-Origin: not found
Cross-Origin Resource Sharing (CORS) not supported



script
src
https://stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31919000 - with long duration found.
Compression (br): 17675/60010 Bytes






ETag: W/"61f338f870fcd0ff46362ef109d28533"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

integrity: sha384-wfSDF2E50Y2D1uUdj0O3uMBJnjuUD4Ih7YwaYd1iqfktj0Uod8GCExl3Og8ifwB6
crossorigin: anonymous
No SRI Parse errorvalid



script
src
https://twitter.github.io/typeahead.js/releases/latest/typeahead.bundle.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=utf-8
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=600 - max-age too short.
Compression (gzip): 18062/96186 Bytes






ETag: W/"553ebb5a-177ba"

Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-kKEVA6cDIbLPVZjTtEWR2tCRYYh6Ax7jH2xOAZoIGcI=
sha384-up5m4qUNHDA0trts45bnm/JBBOfOMbOKtm/uAUX17yitl3RroI3RbrzmkWKBPT3w
sha512-OrFi/o1Q/S2pE3BW4onymzI8UXBwYLwaM64Dsp9Oe1LzC23Nh4pC8c8cJ1M8SmjErNEgMBrK5z5PNyIPxSiirg==

 

<script src="https://twitter.github.io/typeahead.js/releases/latest/typeahead.bundle.js" crossorigin="anonymous" integrity="sha256-kKEVA6cDIbLPVZjTtEWR2tCRYYh6Ax7jH2xOAZoIGcI=" />



script
src
https://www.googletagmanager.com/gtag/js?id=UA-1247215-34
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
missing X-Content-Type-Options nosniff


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: max-age=900, private - max-age too short.
Compression (br): 78943/220750 Bytes






Server-Header Access-Control-Allow-Origin: https://inclusionmonth.com
Cross-Origin Resource Sharing (CORS) not supported


https://172.105.52.36/
172.105.52.36
a

guide.pdf


1
ok















form
post
process_login.php


1
ok















img
src
images/logo.png


1
ok
no alt-Attribute














link
stylesheet
https://aksharganesh.in/css/bootstrap.min.css


1
ok















link
stylesheet
https://aksharganesh.in/css/custom.css?v=2


1
ok















link
stylesheet
https://cdn.jsdelivr.net/npm/bootstrap-icons@1.11.2/font/bootstrap-icons.min.css


1
ok















link
stylesheet
https://shareapic.in/css/cropper.min.css


1
ok















meta
charset
utf-8


1
ok















meta
viewport
width=device-width, initial-scale=1


1
ok















script
src
https://aksharganesh.in/js/bootstrap.bundle.min.js


1
ok
Missing defer / async attribute.














script
src
https://aksharganesh.in/js/jquery-3.7.0.min.js


1
ok
Missing defer / async attribute.














script
src
https://aksharganesh.in/js/popper.min.js


1
ok
Missing defer / async attribute.














script
src
https://aksharganesh.in/js/typeahead.bundle.js


1
ok
Missing defer / async attribute.














script
src
https://shareapic.in/js/cropper.min.js


1
ok
Missing defer / async attribute.














script
src
https://twitter.github.io/typeahead.js/releases/latest/typeahead.bundle.js


1
ok
Missing defer / async attribute.














script
src
https://www.googletagmanager.com/gtag/js?id=UA-1247215-34


1
ok
async attribute found













 

12. Html-Parsing via https://validator.nu/ / https://validator.w3.org/nu/ (started 2024-09-28, 09:00, alpha)

  Unfortunately, there are differences between the first used validator.nu and validator.w3.org/nu/ - switched to validator.w3.org/nu/. Looks like some error messages (link - fetchpriority attribute) of validator.nu are obsolete, not seen in the w3.org-version and not found in the current specification: link may have a fetchpriority attribute.

Url used (first standard-https-result with http status 200): https://inclusionmonth.com/

Summary

Good: No non-document-errors
3 errors
2 warnings

TypeMessagenum found
1.errorA document must not include more than one meta element with a charset attribute.1
2.errorElement head is missing a required instance of child element title.1
3.errorAn img element must have an alt attribute, except under certain conditions. For details, consult guidance on providing text alternatives for images.1
4.infoConsider adding a lang attribute to the html start tag to declare the language of this document.1
5.infoThe type attribute is unnecessary for JavaScript resources.1

Details


TypeMessage + Sample
1errorA document must not include more than one meta element with a charset attribute.

From line 6, column 2 to line 6, column 23

"utf-8"> <meta charset="utf-8"> <met
2errorElement head is missing a required instance of child element title.

From line 36, column 11 to line 36, column 17

</script></head> <bod
3errorAn img element must have an alt attribute, except under certain conditions. For details, consult guidance on providing text alternatives for images.

From line 41, column 5 to line 41, column 79

-3" > <img src="assets/logo_top.png" class="img-fluid" style="max-height: 65px;"> </div
4infoConsider adding a lang attribute to the html start tag to declare the language of this document.

From line 1, column 16 to line 2, column 6

TYPE html> <html> <hea
5infoThe type attribute is unnecessary for JavaScript resources.

From line 23, column 2 to line 23, column 77

/script> <script type="text/javascript" src="https://shareapic.in/js/cropper.min.js"></scri

 

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns1.dns-parking.com, ns2.dns-parking.com

 

QNr.DomainTypeNS used
1
com
NS
d.root-servers.net (2001:500:2d::d)

Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2
ns1.dns-parking.com: 162.159.24.201, 2400:cb00:2049:1::a29f:18c9
NS
a.gtld-servers.net (2001:503:a83e::2:30)

Answer: ns2.dns-parking.com
162.159.25.42, 2400:cb00:2049:1::a29f:192a

 

14. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.inclusionmonth.com



1
0
inclusionmonth.com
5
issue
comodoca.com
1
0

9
issuewild
comodoca.com
1
0

5
issue
digicert.com
1
0

9
issuewild
digicert.com
1
0

5
issue
globalsign.com
1
0

9
issuewild
globalsign.com
1
0

5
issue
letsencrypt.org
1
0

9
issuewild
letsencrypt.org
1
0

5
issue
pki.goog
1
0

9
issuewild
pki.goog
1
0

5
issue
sectigo.com
1
0

9
issuewild
sectigo.com
1
0
com
0

no CAA entry found
1
0

 

15. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
inclusionmonth.com

ok
1
0
www.inclusionmonth.com


1
0
_acme-challenge.inclusionmonth.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.inclusionmonth.com

Name Error - The domain name does not exist
1
0
_acme-challenge.inclusionmonth.com.inclusionmonth.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.inclusionmonth.com.inclusionmonth.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.inclusionmonth.com.www.inclusionmonth.com

Name Error - The domain name does not exist
1
0

 

16. DomainService - Entries

No DomainServiceEntries entries found

 

 

17. Cipher Suites

Summary
DomainIPPortnum CipherstimeStd.ProtocolForward Secrecy
inclusionmonth.com
172.105.52.36
443
19 Ciphers119.88 sec
6 without, 13 FS
68.42 %
Complete

1
19 Ciphers
19.00 Ciphers/Check
119.88 sec119.88 sec/Check
6 without, 13 FS
68.42 %

Details
DomainIPPortCipher (OpenSsl / IANA)
inclusionmonth.com
172.105.52.36
443
ECDHE-RSA-CHACHA20-POLY1305
(Secure)
TLSv1.2
0xCC,0xA8
FS
19 Ciphers, 119.88 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0xC0,0x30
FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




DHE-RSA-AES256-GCM-SHA384
(Secure)
TLSv1.2
0x00,0x9F
FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

DH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0xC0,0x2F
FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




DHE-RSA-AES128-GCM-SHA256
(Secure)
TLSv1.2
0x00,0x9E
FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

DH
RSA
AESGCM(128)
AEAD




ECDHE-RSA-AES256-SHA384
(Weak)
TLSv1.2
0xC0,0x28
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

ECDH
RSA
AES(256)
SHA384




DHE-RSA-AES256-SHA256
(Weak)
TLSv1.2
0x00,0x6B
FS

TLS_DHE_RSA_WITH_AES_256_CBC_SHA256

DH
RSA
AES(256)
SHA256




AES256-GCM-SHA384
(Weak)
TLSv1.2
0x00,0x9D
No FS

TLS_RSA_WITH_AES_256_GCM_SHA384

RSA
RSA
AESGCM(256)
AEAD




AES256-SHA256
(Weak)
TLSv1.2
0x00,0x3D
No FS

TLS_RSA_WITH_AES_256_CBC_SHA256

RSA
RSA
AES(256)
SHA256




ECDHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0xC0,0x27
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

ECDH
RSA
AES(128)
SHA256




DHE-RSA-AES128-SHA256
(Weak)
TLSv1.2
0x00,0x67
FS

TLS_DHE_RSA_WITH_AES_128_CBC_SHA256

DH
RSA
AES(128)
SHA256




AES128-GCM-SHA256
(Weak)
TLSv1.2
0x00,0x9C
No FS

TLS_RSA_WITH_AES_128_GCM_SHA256

RSA
RSA
AESGCM(128)
AEAD




AES128-SHA256
(Weak)
TLSv1.2
0x00,0x3C
No FS

TLS_RSA_WITH_AES_128_CBC_SHA256

RSA
RSA
AES(128)
SHA256




ECDHE-RSA-AES256-SHA
(Weak)
TLSv1
0xC0,0x14
FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

ECDH
RSA
AES(256)
SHA1




ECDHE-RSA-AES128-SHA
(Weak)
TLSv1
0xC0,0x13
FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

ECDH
RSA
AES(128)
SHA1




DHE-RSA-AES256-SHA
(Weak)
SSLv3
0x00,0x39
FS

TLS_DHE_RSA_WITH_AES_256_CBC_SHA

DH
RSA
AES(256)
SHA1




AES256-SHA
(Weak)
SSLv3
0x00,0x35
No FS

TLS_RSA_WITH_AES_256_CBC_SHA

RSA
RSA
AES(256)
SHA1




DHE-RSA-AES128-SHA
(Weak)
SSLv3
0x00,0x33
FS

TLS_DHE_RSA_WITH_AES_128_CBC_SHA

DH
RSA
AES(128)
SHA1




AES128-SHA
(Weak)
SSLv3
0x00,0x2F
No FS

TLS_RSA_WITH_AES_128_CBC_SHA

RSA
RSA
AES(128)
SHA1

 

18. Portchecks

DomainIPPortDescriptionResultAnswer
inclusionmonth.com
172.105.52.36
21
FTP



inclusionmonth.com
172.105.52.36
21
FTP



inclusionmonth.com
172.105.52.36
22
SSH
open
SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

inclusionmonth.com
172.105.52.36
22
SSH
open
SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
Bad: SSH without DNS SSHFP Record found

Possible DNS SSHFP Entries:
inclusionmonth.com IN SSHFP 1 2 0651d3142588f3419ee0aec0384d92f9f36c0851004ee8f7fd781e6aceb87caa
inclusionmonth.com IN SSHFP 3 2 953d940343bac958edacc6a954ce7afb6cc13e3077f5502ecc8236865bda12eb
inclusionmonth.com IN SSHFP 4 2 716ef70ca0770d3e13196242f2de6a110f9e841bf296eb234947d9ffcd9e71a8
inclusionmonth.com
172.105.52.36
25
SMTP



inclusionmonth.com
172.105.52.36
25
SMTP



inclusionmonth.com
172.105.52.36
53
DNS



inclusionmonth.com
172.105.52.36
53
DNS



inclusionmonth.com
172.105.52.36
110
POP3



inclusionmonth.com
172.105.52.36
110
POP3



inclusionmonth.com
172.105.52.36
143
IMAP



inclusionmonth.com
172.105.52.36
143
IMAP



inclusionmonth.com
172.105.52.36
465
SMTP (encrypted)



inclusionmonth.com
172.105.52.36
465
SMTP (encrypted)



inclusionmonth.com
172.105.52.36
587
SMTP (encrypted, submission)



inclusionmonth.com
172.105.52.36
587
SMTP (encrypted, submission)



inclusionmonth.com
172.105.52.36
993
IMAP (encrypted)



inclusionmonth.com
172.105.52.36
993
IMAP (encrypted)



inclusionmonth.com
172.105.52.36
995
POP3 (encrypted)



inclusionmonth.com
172.105.52.36
995
POP3 (encrypted)



inclusionmonth.com
172.105.52.36
1433
MS SQL



inclusionmonth.com
172.105.52.36
1433
MS SQL



inclusionmonth.com
172.105.52.36
2082
cPanel (http)



inclusionmonth.com
172.105.52.36
2082
cPanel (http)



inclusionmonth.com
172.105.52.36
2083
cPanel (https)



inclusionmonth.com
172.105.52.36
2083
cPanel (https)



inclusionmonth.com
172.105.52.36
2086
WHM (http)



inclusionmonth.com
172.105.52.36
2086
WHM (http)



inclusionmonth.com
172.105.52.36
2087
WHM (https)



inclusionmonth.com
172.105.52.36
2087
WHM (https)



inclusionmonth.com
172.105.52.36
2089
cPanel Licensing



inclusionmonth.com
172.105.52.36
2089
cPanel Licensing



inclusionmonth.com
172.105.52.36
2095
cPanel Webmail (http)



inclusionmonth.com
172.105.52.36
2095
cPanel Webmail (http)



inclusionmonth.com
172.105.52.36
2096
cPanel Webmail (https)



inclusionmonth.com
172.105.52.36
2096
cPanel Webmail (https)



inclusionmonth.com
172.105.52.36
2222
DirectAdmin (http)



inclusionmonth.com
172.105.52.36
2222
DirectAdmin (http)



inclusionmonth.com
172.105.52.36
2222
DirectAdmin (https)



inclusionmonth.com
172.105.52.36
2222
DirectAdmin (https)



inclusionmonth.com
172.105.52.36
3306
mySql
open


inclusionmonth.com
172.105.52.36
3306
mySql
open


inclusionmonth.com
172.105.52.36
5224
Plesk Licensing



inclusionmonth.com
172.105.52.36
5224
Plesk Licensing



inclusionmonth.com
172.105.52.36
5432
PostgreSQL



inclusionmonth.com
172.105.52.36
5432
PostgreSQL



inclusionmonth.com
172.105.52.36
8080
Ookla Speedtest (http)



inclusionmonth.com
172.105.52.36
8080
Ookla Speedtest (http)



inclusionmonth.com
172.105.52.36
8080
Ookla Speedtest (https)



inclusionmonth.com
172.105.52.36
8080
Ookla Speedtest (https)



inclusionmonth.com
172.105.52.36
8083
VestaCP http



inclusionmonth.com
172.105.52.36
8083
VestaCP http



inclusionmonth.com
172.105.52.36
8083
VestaCP https



inclusionmonth.com
172.105.52.36
8083
VestaCP https



inclusionmonth.com
172.105.52.36
8443
Plesk Administration (https)



inclusionmonth.com
172.105.52.36
8443
Plesk Administration (https)



inclusionmonth.com
172.105.52.36
8447
Plesk Installer + Updates



inclusionmonth.com
172.105.52.36
8447
Plesk Installer + Updates



inclusionmonth.com
172.105.52.36
8880
Plesk Administration (http)



inclusionmonth.com
172.105.52.36
8880
Plesk Administration (http)



inclusionmonth.com
172.105.52.36
10000
Webmin (http)



inclusionmonth.com
172.105.52.36
10000
Webmin (http)



inclusionmonth.com
172.105.52.36
10000
Webmin (https)



inclusionmonth.com
172.105.52.36
10000
Webmin (https)



 

 

Permalink: https://check-your-website.server-daten.de/?i=d4b16a86-389a-4419-b43a-bf7193df6f4f

 

Last Result: https://check-your-website.server-daten.de/?q=inclusionmonth.com - 2024-10-01 12:20:42

 

Do you like this page? Support this tool, add a link on your page:

 

<a href="https://check-your-website.server-daten.de/?q=inclusionmonth.com" target="_blank">Check this Site: inclusionmonth.com</a>

 

 

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

 

QR-Code of this page - https://check-your-website.server-daten.de/?d=inclusionmonth.com