Report: Blackhatworld.com

01

WHOIS & DNS

DNS records retrieved — SPF & DMARC present

· LOW

▾

// whois

// dns records

A                     172.66.156.78
A                     104.20.19.226
AAAA                  2606:4700:10::ac42:9c4e
AAAA                  2606:4700:10::6814:13e2
www A                 104.20.19.226
www A                 172.66.156.78
www AAAA              2606:4700:10::ac42:9c4e
www AAAA              2606:4700:10::6814:13e2
MX 0                  blackhatworld-com.mail.protection.outlook.com

// ip whois (2)

104.20.19.226         SSL unavailable for this endpoint, order a key at https://members.ip-api.com/ whois ↗
172.66.156.78         SSL unavailable for this endpoint, order a key at https://members.ip-api.com/ whois ↗

// lookup on dnsarchive.net

same IP 172.66.156.78 ↗ 104.20.19.226 ↗

same MX blackhatworld-com.mail.protection.outlook.com ↗

// email security

✓ SPF

v=spf1 include:spf.protection.outlook.com -all

✓ DMARC

v=DMARC1; p=reject; rua=mailto:[email protected]; fo=1; ruf=mailto:[email protected];

// txt records (5)

txt.01                google-site-verification=o8E6ik33-7oH6EdoMDSh-7TiDO4wiz0OFtbJS1zJdys
txt.02                google-site-verification=ujG6FTqpr7xYS1FrzE8M_Hd5Hoigl2eTal35XJ7N_GM
txt.03                88p260kkpd6yvw7jw26q6n76v9h0nl0g
txt.04                MS=ms73127331
txt.05                apple-domain-verification=CqYX7TP2nOkGiW2Z

// findings (6)

✓ ok SPF record present
✓ ok DMARC record present
✓ ok 1 MX record(s) configured
· low No CAA records — any certificate authority can issue certs for this domain
· low No MTA-STS DNS record at _mta-sts — inbound mail can be downgraded
· low No TLS-RPT record at _smtp._tls — no visibility into TLS delivery failures

// external references

DNS history on dnsarchive.net ↗

// detected services (4)

Apple

Bing Webmaster

Google Search Console

Microsoft 365

02

SSL / TLS Certificate

Valid certificate, expires in 76 days — TLSv1.3

✓ OK

▾

// raw output

issuer                      WE1
subject                     blackhatworld.com
valid from                  Apr 17 10:44:56 2026 UTC
valid to                    Jul 16 11:44:33 2026 UTC
tls version                 TLSv1.3

// findings (3)

✓ ok Certificate valid for 76 more days
✓ ok TLS 1.3 in use — best available protocol
✓ ok HTTP redirects to HTTPS in 1 hop(s)

03

CMS Detection

No CMS detected

✓ OK

▾

// raw output

cms                         none detected

// findings (1)

✓ ok No known CMS fingerprint found

04

Security Headers

3 of 7 headers missing

◐ MEDIUM

▾

// raw output

HSTS                        ok (max-age=15552000; includeSubDomains; pre)
CSP                         MISSING
X-Frame-Options             ok (SAMEORIGIN)
X-Content-Type-Options      ok (nosniff)
Referrer-Policy             ok (same-origin)
Permissions-Policy          MISSING
Cross-Origin-Opener         MISSING

// findings (8)

◐ medium Content-Security-Policy missing — site exposed to XSS injection
◐ medium Permissions-Policy missing — browser features not restricted
· low Cross-Origin-Opener-Policy not set
✓ ok Referrer-Policy is configured
✓ ok X-Frame-Options is configured
✓ ok X-Content-Type-Options is configured
✓ ok Strict-Transport-Security is configured
· low No /.well-known/security.txt — researchers cannot find a contact for vulnerability reports

05

Raw HTTP Headers

HTTP/3 · 16 headers · cloudflare

✓ OK

▾

// detected

✓ Cloudflare Site is fronted by Cloudflare — WAF, DDoS protection and CDN caching active

⚡ HTTP/3 HTTP/3 (QUIC) in use — fastest available protocol, low latency and connection migration

✓ GZIP compression Response is GZIP-compressed — reduces bandwidth usage

// raw headers (16)

status                        HTTP/3 403
date                          Fri, 01 May 2026 17:40:19 GMT
vary                          accept-encoding
cf-ray                        9f5092186ae8c8d4-ORD
server                        cloudflare
alt-svc                       h3=":443"; ma=86400
expires                       Thu, 01 Jan 1970 00:00:01 GMT
expect-ct                     max-age=86400, enforce
content-type                  text/html; charset=UTF-8
cache-control                 private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check… 
referrer-policy               same-origin
x-frame-options               SAMEORIGIN
content-encoding              gzip
x-xss-protection              1; mode=block
x-content-type-options        nosniff
strict-transport-security     max-age=15552000; includeSubDomains; preload

// findings (4)

✓ ok Cloudflare detected (WAF + CDN)
✓ ok HTTP/3 enabled — best available
✓ ok GZIP compression active
✓ ok Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0

06

External JS Libraries

No external JS libraries detected

✓ OK

▾

// raw output

external scripts            0 detected

// findings (1)

✓ ok No third-party JavaScript files loaded

07

Malware & Blocklists

Clean — not present on any monitored blocklist

✓ OK

▾

// raw output

Google Safe Browsing        clean
VirusTotal                  clean
injected scripts            0 detected
malware patterns            0 matches

// findings (3)

✓ ok Google Safe Browsing — clean
✓ ok VirusTotal — clean
✓ ok No malware signatures found across monitored blocklists