Report: engage

01

WHOIS & DNS

DNS records retrieved — email policy issues found

◐ MEDIUM

▾

// whois

// dns records

A                     none
www                   no record
MX                    MISSING

// email security

✖ SPF

no SPF record found

✖ DMARC

no DMARC record found

// findings (4)

◐ medium No SPF record — email spoofing is possible
· low No DMARC record — email abuse is harder to detect
· low No MX records — domain may not be set up for email
· low No CAA records — any certificate authority can issue certs for this domain

// external references

DNS history on dnsarchive.net ↗

02

SSL / TLS Certificate

No SSL certificate or HTTP-only site

▲ HIGH

▾

// raw output

ssl                         not available

// findings (1)

▲ high Site does not use HTTPS or certificate could not be retrieved

03

CMS Detection

No CMS detected

✓ OK

▾

// raw output

cms                         none detected

// findings (1)

✓ ok No known CMS fingerprint found

04

Security Headers

7 of 7 headers missing

· LOW

▾

// raw output

HSTS                        MISSING
CSP                         MISSING
X-Frame-Options             MISSING
X-Content-Type-Options      MISSING
Referrer-Policy             MISSING
Permissions-Policy          MISSING
Cross-Origin-Opener         MISSING

// findings (1)

· low No /.well-known/security.txt — researchers cannot find a contact for vulnerability reports

05

Raw HTTP Headers

HTTP/1.1 · 1 headers

· LOW

▾

// detected

▲ HTTP/1.1 HTTP/1.1 detected — upgrade to HTTP/2 for significantly better performance and security

// raw headers (1)

error                         Could not resolve host: engage

// findings (2)

· low HTTP/1.1 in use — HTTP/2 or HTTP/3 recommended
· low No response compression detected — consider enabling GZIP or Brotli

06

External JS Libraries

No external JS libraries detected

✓ OK

▾

// raw output

external scripts            0 detected

// findings (1)

✓ ok No third-party JavaScript files loaded

07

Malware & Blocklists

Clean — not present on any monitored blocklist

✓ OK

▾

// raw output

Google Safe Browsing        not checked
VirusTotal                  not checked
injected scripts            0 detected
malware patterns            0 matches

// findings (1)

✓ ok No malware signatures found across monitored blocklists