diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/404.json b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/404.json index ddae255a..352532e5 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/404.json +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/404.json @@ -16,7 +16,7 @@ "href": "https://deces.matchid.io/" }, "link": "https://deces.matchid.io/", - "line": "--2024-03-17 00:54:40-- https://deces.matchid.io/", + "line": "--2024-03-24 00:56:37-- https://deces.matchid.io/", "broken": false }, { @@ -35,7 +35,7 @@ "href": "https://deces.matchid.io/robots.txt" }, "link": "https://deces.matchid.io/robots.txt", - "line": "--2024-03-17 00:54:41-- https://deces.matchid.io/robots.txt", + "line": "--2024-03-24 00:56:38-- https://deces.matchid.io/robots.txt", "broken": false }, { @@ -54,7 +54,7 @@ "href": "https://deces.matchid.io/favicon.svg" }, "link": "https://deces.matchid.io/favicon.svg", - "line": "--2024-03-17 00:54:41-- https://deces.matchid.io/favicon.svg", + "line": "--2024-03-24 00:56:38-- https://deces.matchid.io/favicon.svg", "broken": false }, { @@ -73,7 +73,7 @@ "href": "https://deces.matchid.io/favicon-apple.png" }, "link": "https://deces.matchid.io/favicon-apple.png", - "line": "--2024-03-17 00:54:41-- https://deces.matchid.io/favicon-apple.png", + "line": "--2024-03-24 00:56:38-- https://deces.matchid.io/favicon-apple.png", "broken": false }, { @@ -92,7 +92,7 @@ "href": "https://deces.matchid.io/manifest.json" }, "link": "https://deces.matchid.io/manifest.json", - "line": "--2024-03-17 00:54:41-- https://deces.matchid.io/manifest.json", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/manifest.json", "broken": false }, { @@ -111,7 +111,7 @@ "href": "https://deces.matchid.io/css/global.css" }, "link": "https://deces.matchid.io/css/global.css", - "line": "--2024-03-17 00:54:41-- https://deces.matchid.io/css/global.css", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/css/global.css", "broken": false }, { @@ -130,7 +130,7 @@ "href": "https://deces.matchid.io/css/matchid.min.css" }, "link": "https://deces.matchid.io/css/matchid.min.css", - "line": "--2024-03-17 00:54:41-- https://deces.matchid.io/css/matchid.min.css", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/css/matchid.min.css", "broken": false }, { @@ -149,7 +149,7 @@ "href": "https://deces.matchid.io/build/module/bundle.css" }, "link": "https://deces.matchid.io/build/module/bundle.css", - "line": "--2024-03-17 00:54:42-- https://deces.matchid.io/build/module/bundle.css", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/build/module/bundle.css", "broken": false }, { @@ -168,7 +168,7 @@ "href": "https://deces.matchid.io/js/matchid.min.js" }, "link": "https://deces.matchid.io/js/matchid.min.js", - "line": "--2024-03-17 00:54:42-- https://deces.matchid.io/js/matchid.min.js", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/js/matchid.min.js", "broken": false }, { @@ -187,7 +187,7 @@ "href": "https://deces.matchid.io/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js" }, "link": "https://deces.matchid.io/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js", - "line": "--2024-03-17 00:54:42-- https://deces.matchid.io/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js", "broken": false }, { @@ -206,7 +206,7 @@ "href": "https://deces.matchid.io/css/layers.svg" }, "link": "https://deces.matchid.io/css/layers.svg", - "line": "--2024-03-17 00:54:42-- https://deces.matchid.io/css/layers.svg", + "line": "--2024-03-24 00:56:39-- https://deces.matchid.io/css/layers.svg", "broken": false }, { @@ -225,7 +225,7 @@ "href": "https://deces.matchid.io/css/images/marker-icon.png" }, "link": "https://deces.matchid.io/css/images/marker-icon.png", - "line": "--2024-03-17 00:54:42-- https://deces.matchid.io/css/images/marker-icon.png", + "line": "--2024-03-24 00:56:40-- https://deces.matchid.io/css/images/marker-icon.png", "broken": false } ], diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/http.json b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/http.json index f1895b72..5df4a734 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/http.json +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/http.json @@ -1 +1 @@ -{"url":"https://deces.matchid.io","algorithm_version":3,"end_time":"Sun, 17 Mar 2024 00:57:21 GMT","grade":"C+","hidden":false,"likelihood_indicator":"MEDIUM","response_headers":{"CF-Cache-Status":"DYNAMIC","CF-RAY":"8659073f19517209-SEA","Connection":"keep-alive","Content-Encoding":"gzip","Content-Security-Policy":"default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com","Content-Type":"text/html","Date":"Sun, 17 Mar 2024 00:57:20 GMT","Feature-Policy":"geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';","Last-Modified":"Wed, 06 Mar 2024 01:29:22 GMT","NEL":"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}","Referrer-Policy":"same-origin","Report-To":"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=0bqTGOwqDHtIpUvCmnHvd%2BTSeRm0AQLSSiP9kxDSDcGsIQUzGoJp2Opvolh0nsACkcK6NqfW6z3FgBp7sY4AEwFvsUXrZdIxA%2Bc6Kx2uUfVoVF8zUgvtVhZ%2BJit9c%2Fpv7ptS\"}],\"group\":\"cf-nel\",\"max_age\":604800}","Server":"cloudflare","Strict-Transport-Security":"max-age=15552000; includeSubDomains; preload","Transfer-Encoding":"chunked","X-Content-Type-Options":"nosniff","X-Frame-Options":"*.matchid.io","X-XSS-Protection":"1; mode=block","alt-svc":"h3=\":443\"; ma=86400"},"scan_id":48950893,"score":60,"start_time":"Sun, 17 Mar 2024 00:57:19 GMT","state":"FINISHED","status_code":200,"tests_failed":2,"tests_passed":9,"tests_quantity":11,"details":{"content-security-policy":{"expectation":"csp-implemented-with-no-unsafe","name":"content-security-policy","output":{"data":{"connect-src":["region1.analytics.google.com","pagead2.googlesyndication.com","csi.gstatic.com","'self'","www.data.gouv.fr","www.google-analytics.com","analytics.google.com","cloudflareinsights.com","stats.g.doubleclick.net"],"default-src":["'self'"],"font-src":["'self'","data:"],"frame-src":["tpc.googlesyndication.com","www.google.com","matchid.io","'self'","google.com","googleads.g.doubleclick.net"],"img-src":["c.basemaps.cartocdn.com","b.basemaps.cartocdn.com","www.google.fr","pagead2.googlesyndication.com","a.basemaps.cartocdn.com","'self'","matchid.io","www.google-analytics.com","upload.wikimedia.org","stats.g.doubleclick.net"],"script-src":["tpc.googlesyndication.com","'unsafe-eval'","www.google.ca","www.googletagservices.com","adservice.google.fr","static.cloudflareinsights.com","www.google.com","ajax.cloudflare.com","fundingchoicesmessages.google.com","'self'","pagead2.googlesyndication.com","www.googletagmanager.com","www.google-analytics.com","'unsafe-inline'","analytics.google.com","partner.googleadservices.com","adservice.google.com"],"style-src":["https:","'self'","'unsafe-inline'"]},"http":true,"meta":false,"numPolicies":1,"policy":{"antiClickjacking":false,"defaultNone":false,"insecureBaseUri":true,"insecureFormAction":true,"insecureSchemeActive":false,"insecureSchemePassive":false,"strictDynamic":false,"unsafeEval":true,"unsafeInline":true,"unsafeInlineStyle":true,"unsafeObjects":false}},"pass":false,"result":"csp-implemented-with-unsafe-inline","score_description":"Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.","score_modifier":-20},"contribute":{"expectation":"contribute-json-only-required-on-mozilla-properties","name":"contribute","output":{"data":null},"pass":true,"result":"contribute-json-only-required-on-mozilla-properties","score_description":"Contribute.json isn't required on websites that don't belong to Mozilla","score_modifier":0},"cookies":{"expectation":"cookies-secure-with-httponly-sessions","name":"cookies","output":{"data":null,"sameSite":null},"pass":true,"result":"cookies-not-found","score_description":"No cookies detected","score_modifier":0},"cross-origin-resource-sharing":{"expectation":"cross-origin-resource-sharing-not-implemented","name":"cross-origin-resource-sharing","output":{"data":{"acao":null,"clientaccesspolicy":null,"crossdomain":null}},"pass":true,"result":"cross-origin-resource-sharing-not-implemented","score_description":"Content is not visible via cross-origin resource sharing (CORS) files or headers","score_modifier":0},"redirection":{"expectation":"redirection-to-https","name":"redirection","output":{"destination":"https://deces.matchid.io/","redirects":true,"route":["http://deces.matchid.io/","https://deces.matchid.io/"],"status_code":200},"pass":true,"result":"redirection-to-https","score_description":"Initial redirection is to HTTPS on same host, final destination is HTTPS","score_modifier":0},"referrer-policy":{"expectation":"referrer-policy-private","name":"referrer-policy","output":{"data":"same-origin","http":true,"meta":false},"pass":true,"result":"referrer-policy-private","score_description":"Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"","score_modifier":5},"strict-transport-security":{"expectation":"hsts-implemented-max-age-at-least-six-months","name":"strict-transport-security","output":{"data":"max-age=15552000; includeSubDomains; preload","includeSubDomains":true,"max-age":15552000,"preload":true,"preloaded":false},"pass":true,"result":"hsts-implemented-max-age-at-least-six-months","score_description":"HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)","score_modifier":0},"subresource-integrity":{"expectation":"sri-implemented-and-external-scripts-loaded-securely","name":"subresource-integrity","output":{"data":{"https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317":{"crossorigin":"anonymous","integrity":"sha512-euoFGowhlaLqXsPWQ48qSkBSCFs3DPRyiwVu3FjR96cMPx+Fr+gpWRhIafcHwqwCqWS42RZhIudOvEI+Ckf6MA=="}}},"pass":true,"result":"sri-implemented-and-external-scripts-loaded-securely","score_description":"Subresource Integrity (SRI) is implemented and all scripts are loaded securely","score_modifier":5},"x-content-type-options":{"expectation":"x-content-type-options-nosniff","name":"x-content-type-options","output":{"data":"nosniff"},"pass":true,"result":"x-content-type-options-nosniff","score_description":"X-Content-Type-Options header set to \"nosniff\"","score_modifier":0},"x-frame-options":{"expectation":"x-frame-options-sameorigin-or-deny","name":"x-frame-options","output":{"data":"*.matchid.io"},"pass":false,"result":"x-frame-options-header-invalid","score_description":"X-Frame-Options (XFO) header cannot be recognized","score_modifier":-20},"x-xss-protection":{"expectation":"x-xss-protection-disabled","name":"x-xss-protection","output":{"data":"1; mode=block"},"pass":true,"result":"x-xss-protection-enabled-mode-block","score_description":"Deprecated X-XSS-Protection header set to \"1; mode=block\"","score_modifier":0}}} \ No newline at end of file +{"url":"https://deces.matchid.io","algorithm_version":3,"end_time":"Sun, 24 Mar 2024 00:58:14 GMT","grade":"C+","hidden":false,"likelihood_indicator":"MEDIUM","response_headers":{"CF-Cache-Status":"DYNAMIC","CF-RAY":"8692b62038bc2805-SEA","Connection":"keep-alive","Content-Encoding":"gzip","Content-Security-Policy":"default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com","Content-Type":"text/html","Date":"Sun, 24 Mar 2024 00:58:12 GMT","Feature-Policy":"geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';","Last-Modified":"Wed, 06 Mar 2024 01:29:22 GMT","NEL":"{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}","Referrer-Policy":"same-origin","Report-To":"{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=sR9ewJZQ9w3xUI4Qt%2F5wnwtaaCZy49D4FwcKllyB7yvKXBtOzNA0KGZchNd%2F%2BD6%2FN47dl8J6G%2B%2Bpr3TBmQ8Nh%2FN%2BVgDycqyDVKMOAX5n7XlpKhN6yPdFXJCxpMJlGXtJwA6K\"}],\"group\":\"cf-nel\",\"max_age\":604800}","Server":"cloudflare","Strict-Transport-Security":"max-age=15552000; includeSubDomains; preload","Transfer-Encoding":"chunked","X-Content-Type-Options":"nosniff","X-Frame-Options":"*.matchid.io","X-XSS-Protection":"1; mode=block","alt-svc":"h3=\":443\"; ma=86400"},"scan_id":49223166,"score":60,"start_time":"Sun, 24 Mar 2024 00:58:11 GMT","state":"FINISHED","status_code":200,"tests_failed":2,"tests_passed":9,"tests_quantity":11,"details":{"content-security-policy":{"expectation":"csp-implemented-with-no-unsafe","name":"content-security-policy","output":{"data":{"connect-src":["cloudflareinsights.com","pagead2.googlesyndication.com","www.google-analytics.com","www.data.gouv.fr","region1.analytics.google.com","analytics.google.com","stats.g.doubleclick.net","csi.gstatic.com","'self'"],"default-src":["'self'"],"font-src":["data:","'self'"],"frame-src":["www.google.com","tpc.googlesyndication.com","matchid.io","googleads.g.doubleclick.net","'self'","google.com"],"img-src":["upload.wikimedia.org","a.basemaps.cartocdn.com","pagead2.googlesyndication.com","b.basemaps.cartocdn.com","www.google-analytics.com","matchid.io","www.google.fr","c.basemaps.cartocdn.com","stats.g.doubleclick.net","'self'"],"script-src":["www.google.com","adservice.google.com","pagead2.googlesyndication.com","tpc.googlesyndication.com","www.google-analytics.com","www.google.ca","static.cloudflareinsights.com","partner.googleadservices.com","'unsafe-eval'","fundingchoicesmessages.google.com","www.googletagservices.com","www.googletagmanager.com","analytics.google.com","adservice.google.fr","ajax.cloudflare.com","'unsafe-inline'","'self'"],"style-src":["https:","'unsafe-inline'","'self'"]},"http":true,"meta":false,"numPolicies":1,"policy":{"antiClickjacking":false,"defaultNone":false,"insecureBaseUri":true,"insecureFormAction":true,"insecureSchemeActive":false,"insecureSchemePassive":false,"strictDynamic":false,"unsafeEval":true,"unsafeInline":true,"unsafeInlineStyle":true,"unsafeObjects":false}},"pass":false,"result":"csp-implemented-with-unsafe-inline","score_description":"Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.","score_modifier":-20},"contribute":{"expectation":"contribute-json-only-required-on-mozilla-properties","name":"contribute","output":{"data":null},"pass":true,"result":"contribute-json-only-required-on-mozilla-properties","score_description":"Contribute.json isn't required on websites that don't belong to Mozilla","score_modifier":0},"cookies":{"expectation":"cookies-secure-with-httponly-sessions","name":"cookies","output":{"data":null,"sameSite":null},"pass":true,"result":"cookies-not-found","score_description":"No cookies detected","score_modifier":0},"cross-origin-resource-sharing":{"expectation":"cross-origin-resource-sharing-not-implemented","name":"cross-origin-resource-sharing","output":{"data":{"acao":null,"clientaccesspolicy":null,"crossdomain":null}},"pass":true,"result":"cross-origin-resource-sharing-not-implemented","score_description":"Content is not visible via cross-origin resource sharing (CORS) files or headers","score_modifier":0},"redirection":{"expectation":"redirection-to-https","name":"redirection","output":{"destination":"https://deces.matchid.io/","redirects":true,"route":["http://deces.matchid.io/","https://deces.matchid.io/"],"status_code":200},"pass":true,"result":"redirection-to-https","score_description":"Initial redirection is to HTTPS on same host, final destination is HTTPS","score_modifier":0},"referrer-policy":{"expectation":"referrer-policy-private","name":"referrer-policy","output":{"data":"same-origin","http":true,"meta":false},"pass":true,"result":"referrer-policy-private","score_description":"Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"","score_modifier":5},"strict-transport-security":{"expectation":"hsts-implemented-max-age-at-least-six-months","name":"strict-transport-security","output":{"data":"max-age=15552000; includeSubDomains; preload","includeSubDomains":true,"max-age":15552000,"preload":true,"preloaded":false},"pass":true,"result":"hsts-implemented-max-age-at-least-six-months","score_description":"HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)","score_modifier":0},"subresource-integrity":{"expectation":"sri-implemented-and-external-scripts-loaded-securely","name":"subresource-integrity","output":{"data":{}},"pass":true,"result":"sri-not-implemented-but-all-scripts-loaded-from-secure-origin","score_description":"Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin","score_modifier":0},"x-content-type-options":{"expectation":"x-content-type-options-nosniff","name":"x-content-type-options","output":{"data":"nosniff"},"pass":true,"result":"x-content-type-options-nosniff","score_description":"X-Content-Type-Options header set to \"nosniff\"","score_modifier":0},"x-frame-options":{"expectation":"x-frame-options-sameorigin-or-deny","name":"x-frame-options","output":{"data":"*.matchid.io"},"pass":false,"result":"x-frame-options-header-invalid","score_description":"X-Frame-Options (XFO) header cannot be recognized","score_modifier":-20},"x-xss-protection":{"expectation":"x-xss-protection-disabled","name":"x-xss-protection","output":{"data":"1; mode=block"},"pass":true,"result":"x-xss-protection-enabled-mode-block","score_description":"Deprecated X-XSS-Protection header set to \"1; mode=block\"","score_modifier":0}}} \ No newline at end of file diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/lhr-aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlvLw==.html b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/lhr-aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlvLw==.html index 03ee3a52..e8f48c92 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/lhr-aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlvLw==.html +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/lhr-aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlvLw==.html @@ -7583,7 +7583,7 @@ //# sourceURL=compiled-reportrenderer.js - + - - + - + diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/nuclei.json b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/nuclei.json index 11732a21..62c1967e 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/nuclei.json +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/nuclei.json @@ -32,9 +32,9 @@ "type": "dns", "host": "deces.matchid.io.", "matched-at": "deces.matchid.io", - "request": ";; opcode: QUERY, status: NOERROR, id: 51720\n;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t CAA\n", - "response": ";; opcode: QUERY, status: NOERROR, id: 51720\n;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 1232\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t CAA\n\n;; AUTHORITY SECTION:\nmatchid.io.\t1800\tIN\tSOA\ttia.ns.cloudflare.com. dns.cloudflare.com. 2334442361 10000 2400 604800 1800\n", - "timestamp": "2024-03-17T00:59:47.138147074Z", + "request": ";; opcode: QUERY, status: NOERROR, id: 50016\n;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t CAA\n", + "response": ";; opcode: QUERY, status: NOERROR, id: 50016\n;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 1232\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t CAA\n\n;; AUTHORITY SECTION:\nmatchid.io.\t1800\tIN\tSOA\ttia.ns.cloudflare.com. dns.cloudflare.com. 2336515962 10000 2400 604800 1800\n", + "timestamp": "2024-03-24T01:00:43.025662623Z", "matcher-status": true }, { @@ -72,9 +72,9 @@ "extracted-results": [ "\"google-site-verification=R8qdKQhQRtLbMF_bALIP-CGC16_BJCZSy8Olu7RTzY8\"" ], - "request": ";; opcode: QUERY, status: NOERROR, id: 58621\n;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t TXT\n", - "response": ";; opcode: QUERY, status: NOERROR, id: 58621\n;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 512\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t TXT\n\n;; ANSWER SECTION:\ndeces.matchid.io.\t300\tIN\tTXT\t\"google-site-verification=R8qdKQhQRtLbMF_bALIP-CGC16_BJCZSy8Olu7RTzY8\"\n", - "timestamp": "2024-03-17T00:59:47.157507765Z", + "request": ";; opcode: QUERY, status: NOERROR, id: 36490\n;; flags: rd ad; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 4096\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t TXT\n", + "response": ";; opcode: QUERY, status: NOERROR, id: 36490\n;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags:; udp: 512\n\n;; QUESTION SECTION:\n;deces.matchid.io.\tIN\t TXT\n\n;; ANSWER SECTION:\ndeces.matchid.io.\t300\tIN\tTXT\t\"google-site-verification=R8qdKQhQRtLbMF_bALIP-CGC16_BJCZSy8Olu7RTzY8\"\n", + "timestamp": "2024-03-24T01:00:43.977477289Z", "matcher-status": true }, { @@ -114,9 +114,9 @@ "1; mode=block" ], "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b079b4022cc-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 00:59:55 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=A9WiFNs0lC6V7w5v6okJdnDMFfw9FKkME7dGWsnTrDU%2FtxvPua%2F%2FZhjiZK7zGNikgHZkj0g%2B4Z%2BIGQ9%2BQT48ojMAxmCSl3jJtm53IALBEMC3Hj8wFuEcFRXn0N%2BRTnDV7lRu\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba035bdc8f4f-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:00:51 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=s5sbL7QSC20F%2B%2BiS08WLgBjMEvQsh1%2B23lWnQFyL8t0hgAfi34CsAq6W3ofSH0QKzdMsEX%2FTgnSLU1jR8nag7Bi1RLN5OxKLVHLpCcB5EUVnXm%2FxFZzRE8gmUWVKjyWYk%2FeH\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T00:59:55.61181906Z", + "timestamp": "2024-03-24T01:00:51.260004594Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -143,9 +143,9 @@ "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b77b8ab6095-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:13 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=nUj4dEJkXUv6CT8KgZhr6kaHrbZ7kNaRKSvQBz0A4mOxE484qUu7fHEyvWLhTVmYdHEbXbC8BRo8PBT0%2FnKTtv7ufycvYOoJuBCKiuZi0uRZetrWk%2BvuFzuhfeJDkRM1%2Fx1u\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba74a8ec8726-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:09 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QSc%2FGw9gvhYNDTTkmcGWtnoQk6yHstlPmXH%2FaqIObznE0gZNY7qwcILiJWwI8oXRMavIYDlPm7ZHprRXipeJcqLDx%2BkHDUG%2B7gkC5gNeyQ%2BHQ6dRBI6LYowdFwnwWabAH2qc\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:13.683140254Z", + "timestamp": "2024-03-24T01:01:09.514328895Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -177,14 +177,14 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b9dff3510be-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:19 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rTIPhdZWvbImCJ4mCJb95OPAniiauqb5pqn2yWxDotL3HbnF210JoK%2B8a866H9zOSO4%2FyticngkY8sI48y4CHTYWMWeWP14rCN5aSI3PhQj3WWj560W%2FiXNJaPKonJxxjes7\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba9a1b642191-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:15 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9EAlF%2FDj04FOCcgPoLNZjXI%2B77U1ij8Hf2i7udNJ57B7riXT7y3SldF%2BgN0ViN2q%2FHpEsfFznWLsTS3ckdRSV%2BNLIGb%2FQIe5Ini0bowLK5QJxJSGHH4VfWokSpvXHCINjj1Y\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:19.638147816Z", + "timestamp": "2024-03-24T01:01:15.341775103Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -216,14 +216,14 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b9dff3510be-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:19 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rTIPhdZWvbImCJ4mCJb95OPAniiauqb5pqn2yWxDotL3HbnF210JoK%2B8a866H9zOSO4%2FyticngkY8sI48y4CHTYWMWeWP14rCN5aSI3PhQj3WWj560W%2FiXNJaPKonJxxjes7\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba9a1b642191-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:15 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9EAlF%2FDj04FOCcgPoLNZjXI%2B77U1ij8Hf2i7udNJ57B7riXT7y3SldF%2BgN0ViN2q%2FHpEsfFznWLsTS3ckdRSV%2BNLIGb%2FQIe5Ini0bowLK5QJxJSGHH4VfWokSpvXHCINjj1Y\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:19.638201136Z", + "timestamp": "2024-03-24T01:01:15.342013631Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -255,14 +255,14 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b9dff3510be-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:19 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rTIPhdZWvbImCJ4mCJb95OPAniiauqb5pqn2yWxDotL3HbnF210JoK%2B8a866H9zOSO4%2FyticngkY8sI48y4CHTYWMWeWP14rCN5aSI3PhQj3WWj560W%2FiXNJaPKonJxxjes7\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba9a1b642191-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:15 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9EAlF%2FDj04FOCcgPoLNZjXI%2B77U1ij8Hf2i7udNJ57B7riXT7y3SldF%2BgN0ViN2q%2FHpEsfFznWLsTS3ckdRSV%2BNLIGb%2FQIe5Ini0bowLK5QJxJSGHH4VfWokSpvXHCINjj1Y\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:19.638216635Z", + "timestamp": "2024-03-24T01:01:15.342171627Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -294,14 +294,14 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b9dff3510be-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:19 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rTIPhdZWvbImCJ4mCJb95OPAniiauqb5pqn2yWxDotL3HbnF210JoK%2B8a866H9zOSO4%2FyticngkY8sI48y4CHTYWMWeWP14rCN5aSI3PhQj3WWj560W%2FiXNJaPKonJxxjes7\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba9a1b642191-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:15 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9EAlF%2FDj04FOCcgPoLNZjXI%2B77U1ij8Hf2i7udNJ57B7riXT7y3SldF%2BgN0ViN2q%2FHpEsfFznWLsTS3ckdRSV%2BNLIGb%2FQIe5Ini0bowLK5QJxJSGHH4VfWokSpvXHCINjj1Y\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:19.638229019Z", + "timestamp": "2024-03-24T01:01:15.342187787Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -333,14 +333,14 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b9dff3510be-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:19 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rTIPhdZWvbImCJ4mCJb95OPAniiauqb5pqn2yWxDotL3HbnF210JoK%2B8a866H9zOSO4%2FyticngkY8sI48y4CHTYWMWeWP14rCN5aSI3PhQj3WWj560W%2FiXNJaPKonJxxjes7\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba9a1b642191-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:15 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9EAlF%2FDj04FOCcgPoLNZjXI%2B77U1ij8Hf2i7udNJ57B7riXT7y3SldF%2BgN0ViN2q%2FHpEsfFznWLsTS3ckdRSV%2BNLIGb%2FQIe5Ini0bowLK5QJxJSGHH4VfWokSpvXHCINjj1Y\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:19.6382512Z", + "timestamp": "2024-03-24T01:01:15.342200241Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -372,14 +372,14 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io", "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590b9dff3510be-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:19 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rTIPhdZWvbImCJ4mCJb95OPAniiauqb5pqn2yWxDotL3HbnF210JoK%2B8a866H9zOSO4%2FyticngkY8sI48y4CHTYWMWeWP14rCN5aSI3PhQj3WWj560W%2FiXNJaPKonJxxjes7\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692ba9a1b642191-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:15 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=9EAlF%2FDj04FOCcgPoLNZjXI%2B77U1ij8Hf2i7udNJ57B7riXT7y3SldF%2BgN0ViN2q%2FHpEsfFznWLsTS3ckdRSV%2BNLIGb%2FQIe5Ini0bowLK5QJxJSGHH4VfWokSpvXHCINjj1Y\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:19.638265968Z", + "timestamp": "2024-03-24T01:01:15.34221578Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io'", "matcher-status": true }, @@ -408,137 +408,12 @@ "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io/robots.txt", "request": "GET /robots.txt HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 34\r\nAccept-Ranges: bytes\r\nAge: 344\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCache-Control: max-age=86400\r\nCf-Cache-Status: HIT\r\nCf-Ray: 86590bc37fd35078-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/plain\r\nDate: Sun, 17 Mar 2024 01:00:25 GMT\r\nEtag: \"65e7c6f2-22\"\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=h%2FT0VKIBtlens6cKp6E2aTYYHbJEvdWbbVdCiyZWlrFY3KWiReKB868zdb3%2Fhd98xxGfKTCfWjMwhzqmAkGS%2FFlaRR63EdxTEMEtmSOEdsOQUFbQQ0PJ9rOg1g5UObTSjfTU\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nVary: Accept-Encoding\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\nUser-agent: AhrefsBot\nDisallow: /\n", + "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nContent-Length: 34\r\nAccept-Ranges: bytes\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCache-Control: max-age=86400\r\nCf-Cache-Status: MISS\r\nCf-Ray: 8692babfcec66168-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/plain\r\nDate: Sun, 24 Mar 2024 01:01:21 GMT\r\nEtag: \"65e7c6f2-22\"\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=pdvDNmgbnfTbg2A14hm4EonjK5OKWEmKIyxRNqbEgHm%2B%2F4bnDZpsgrtr8wYVGr6ST6H4OYxfqyIwPOYCnKij5IEwstComTGS4RZGITCLp7SFrDzgt4Q2gJiAWXa1uR4gyIAD\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nVary: Accept-Encoding\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\nUser-agent: AhrefsBot\nDisallow: /\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:25.526206209Z", + "timestamp": "2024-03-24T01:01:21.376351604Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io/robots.txt'", "matcher-status": true }, - { - "template": "http/misconfiguration/missing-sri.yaml", - "template-url": "https://templates.nuclei.sh/public/missing-sri", - "template-id": "missing-sri", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", - "info": { - "name": "Missing Subresource Integrity", - "author": [ - "lucky0x0d", - "pulsesecurity.co.nz" - ], - "tags": [ - "compliance", - "js", - "sri", - "misconfig" - ], - "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://deces.matchid.io", - "matched-at": "https://deces.matchid.io/", - "extracted-results": [ - "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" - ], - "request": "GET / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590bdc5f3f61e4-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:29 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=1lFFWqJYbYTalYLyRHc8GCf11VXCCK9J8KI%2FWARg874xSiSAp%2FzyIihDw%2Bw0zv40WrVmh3NPiXVa0IAip6FeBNzzT3LvUahzYsXs6f1n72QbxGwkwGd1IzHhPC73%2Fayr17J2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", - "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:29.619313154Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: deces.matchid.io' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io/'", - "matcher-status": true - }, - { - "template": "http/technologies/nacos-version.yaml", - "template-url": "https://templates.nuclei.sh/public/nacos-version", - "template-id": "nacos-version", - "template-path": "/home/runner/nuclei-templates/http/technologies/nacos-version.yaml", - "info": { - "name": "Nacos - Detect", - "author": [ - "arm!tage" - ], - "tags": [ - "tech", - "detect", - "nacos" - ], - "description": "Nacos was detected.\n", - "severity": "info", - "metadata": { - "max-request": 2, - "shodan-query": "title:\"Nacos\"", - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "http", - "host": "https://deces.matchid.io", - "matched-at": "https://deces.matchid.io/v1/console/server/state?accessToken&username", - "extracted-results": [ - "\"version\":\"2024.2.4\"" - ], - "request": "GET /v1/console/server/state?accessToken&username HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590bf61fca115a-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:33 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QKTgcjhMhu0Cn9NsMZ0HiFxS%2B%2Fqmch2C96Usd%2FjZQzSkigZcs8xx5gpc9jOcfFrAAtZlecq0iiFjPJ3y6m2vazRyKNfjIOphy0nXUkUJs0hknZiGupl6b7O4yJ8qyzPGplGn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", - "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:33.729336273Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io/v1/console/server/state?accessToken&username'", - "matcher-status": true - }, - { - "template": "http/technologies/nacos-version.yaml", - "template-url": "https://templates.nuclei.sh/public/nacos-version", - "template-id": "nacos-version", - "template-path": "/home/runner/nuclei-templates/http/technologies/nacos-version.yaml", - "info": { - "name": "Nacos - Detect", - "author": [ - "arm!tage" - ], - "tags": [ - "tech", - "detect", - "nacos" - ], - "description": "Nacos was detected.\n", - "severity": "info", - "metadata": { - "max-request": 2, - "shodan-query": "title:\"Nacos\"", - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "http", - "host": "https://deces.matchid.io", - "matched-at": "https://deces.matchid.io/nacos/v1/console/server/state?accessToken&username", - "extracted-results": [ - "\"version\":\"2024.2.4\"" - ], - "request": "GET /nacos/v1/console/server/state?accessToken&username HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip\r\n\r\n", - "response": "HTTP/1.1 200 OK\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590bf6dab910fb-ORD\r\nContent-Security-Policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:33 GMT\r\nFeature-Policy: geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';\r\nLast-Modified: Wed, 06 Mar 2024 01:29:22 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReferrer-Policy: same-origin\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=B8dPf2Bqlh5GHIanPQ2yMCJlZKdktNiSJrDtexbLBctgVQZQnARwign9ImWZ%2BEp%2F4XK9X1jO5K2CoTp0B7H1fYbd3ZCVAT7ZXYXzu%2Bj2G27RLILauv0BwrK090D1cnpFkIvg\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\nX-Frame-Options: *.matchid.io\r\nX-Xss-Protection: 1; mode=block\r\n\r\n\n\n\n\n\n\n\n\n\nmatchID - Moteur de recherche des décès\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
\nSi vous voyez ce message, c'est que que votre navigateur est incompatible, ou bien que la connexion a posé\nproblème.\n
\nLes navigateurs supportés sont : Edge >= 79, Chrome >= 65, Firefox >= 68, Safari >=11\n
\nMaintenir la compatibilité du service avec les navigateurs anciens est une activité coûteuse, et le maintien\nd'une version ancienne de navigateur est risquée pour la sécurité de vos données. N'hésitez pas à faire\nune mise à jour !\n
\n\n\n\n", - "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:33.863291366Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io/nacos/v1/console/server/state?accessToken&username'", - "matcher-status": true - }, { "template": "http/technologies/waf-detect.yaml", "template-url": "https://templates.nuclei.sh/public/waf-detect", @@ -570,14 +445,14 @@ ] } }, - "matcher-name": "cloudflare", + "matcher-name": "nginxgeneric", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io/", "request": "POST / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nContent-Length: 27\r\nContent-Type: application/x-www-form-urlencoded\r\nAccept-Encoding: gzip\r\n\r\n_=", - "response": "HTTP/1.1 405 Method Not Allowed\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590bfbba6a2f2c-ORD\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:34 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=d3vgWEdaA961PpRZRhC09vt71e6MAUngcZ7JCjuEolSi3079DgIpl3OfncDRSZmtlUa4G2IxrqSxnTF1AYNIWyoNV9%2FVL%2Fj%2FvQMXCswEiMr6P%2FW1LOd8OCrjIMILLxudNWyn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\n\r\n\n405 Not Allowed\n\n

405 Not Allowed

\n
nginx
\n\n\n\n", + "response": "HTTP/1.1 405 Method Not Allowed\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692baf70a2c61ca-ORD\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:30 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=aTE6Y%2BfLU9cvWtiUctcnXRlIWaO8XA3bTdihYHguF5HsbzoCHpq%2FY2EWaJoJZnqWWQEf2wdcEZQGJKF4Dg%2FNoV%2B2m33GmSR6pe979cL0CM5LY8%2BQl0jECEjs075u5xzTrBCx\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\n\r\n\n405 Not Allowed\n\n

405 Not Allowed

\n
nginx
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:34.642346194Z", + "timestamp": "2024-03-24T01:01:30.221564571Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: deces.matchid.io' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io/'", "matcher-status": true }, @@ -612,14 +487,14 @@ ] } }, - "matcher-name": "nginxgeneric", + "matcher-name": "cloudflare", "type": "http", "host": "https://deces.matchid.io", "matched-at": "https://deces.matchid.io/", "request": "POST / HTTP/1.1\r\nHost: deces.matchid.io\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nConnection: close\r\nContent-Length: 27\r\nContent-Type: application/x-www-form-urlencoded\r\nAccept-Encoding: gzip\r\n\r\n_=", - "response": "HTTP/1.1 405 Method Not Allowed\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 86590bfbba6a2f2c-ORD\r\nContent-Type: text/html\r\nDate: Sun, 17 Mar 2024 01:00:34 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=d3vgWEdaA961PpRZRhC09vt71e6MAUngcZ7JCjuEolSi3079DgIpl3OfncDRSZmtlUa4G2IxrqSxnTF1AYNIWyoNV9%2FVL%2Fj%2FvQMXCswEiMr6P%2FW1LOd8OCrjIMILLxudNWyn\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\n\r\n\n405 Not Allowed\n\n

405 Not Allowed

\n
nginx
\n\n\n\n", + "response": "HTTP/1.1 405 Method Not Allowed\r\nConnection: close\r\nTransfer-Encoding: chunked\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nCf-Cache-Status: DYNAMIC\r\nCf-Ray: 8692baf70a2c61ca-ORD\r\nContent-Type: text/html\r\nDate: Sun, 24 Mar 2024 01:01:30 GMT\r\nNel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nReport-To: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=aTE6Y%2BfLU9cvWtiUctcnXRlIWaO8XA3bTdihYHguF5HsbzoCHpq%2FY2EWaJoJZnqWWQEf2wdcEZQGJKF4Dg%2FNoV%2B2m33GmSR6pe979cL0CM5LY8%2BQl0jECEjs075u5xzTrBCx\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nServer: cloudflare\r\nStrict-Transport-Security: max-age=15552000; includeSubDomains; preload\r\nX-Content-Type-Options: nosniff\r\n\r\n\n405 Not Allowed\n\n

405 Not Allowed

\n
nginx
\n\n\n", "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:00:34.642391218Z", + "timestamp": "2024-03-24T01:01:30.222111876Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: deces.matchid.io' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deces.matchid.io/'", "matcher-status": true }, @@ -650,7 +525,7 @@ "Let's Encrypt" ], "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:03:28.102023748Z", + "timestamp": "2024-03-24T01:04:23.761100124Z", "matcher-status": true }, { @@ -681,7 +556,7 @@ "matchid.io" ], "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:03:28.1021422Z", + "timestamp": "2024-03-24T01:04:23.761253251Z", "matcher-status": true }, { @@ -716,7 +591,7 @@ " SAN: [*.matchid.io matchid.io]" ], "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:03:28.102186112Z", + "timestamp": "2024-03-24T01:04:23.761301371Z", "matcher-status": true }, { @@ -747,7 +622,7 @@ "tls12" ], "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:03:28.118772892Z", + "timestamp": "2024-03-24T01:04:23.77919309Z", "matcher-status": true }, { @@ -778,7 +653,7 @@ "tls13" ], "ip": "104.21.64.91", - "timestamp": "2024-03-17T01:03:28.143268461Z", + "timestamp": "2024-03-24T01:04:23.801703282Z", "matcher-status": true } ] diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/screenshot.jpeg b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/screenshot.jpeg index 7babf1b0..6f9acd6a 100644 Binary files a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/screenshot.jpeg and b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/screenshot.jpeg differ diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.csv b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.csv index b139ae4c..1070953b 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.csv +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.csv @@ -1,168 +1,4 @@ "id","fqdn/ip","port","severity","finding","cve","cwe" -"service","deces.matchid.io/172.67.179.218","443","INFO","HTTP","","" -"pre_128cipher","deces.matchid.io/172.67.179.218","443","INFO","No 128 cipher limit bug","","" -"SSLv2","deces.matchid.io/172.67.179.218","443","OK","not offered","","" -"SSLv3","deces.matchid.io/172.67.179.218","443","OK","not offered","","" -"TLS1","deces.matchid.io/172.67.179.218","443","INFO","not offered","","" -"TLS1_1","deces.matchid.io/172.67.179.218","443","INFO","not offered","","" -"TLS1_2","deces.matchid.io/172.67.179.218","443","OK","offered","","" -"TLS1_3","deces.matchid.io/172.67.179.218","443","OK","offered with final","","" -"ALPN_HTTP2","deces.matchid.io/172.67.179.218","443","OK","h2","","" -"ALPN","deces.matchid.io/172.67.179.218","443","INFO","http/1.1","","" -"cipherlist_NULL","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" -"cipherlist_aNULL","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" -"cipherlist_EXPORT","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" -"cipherlist_LOW","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" -"cipherlist_3DES_IDEA","deces.matchid.io/172.67.179.218","443","INFO","not offered","","CWE-310" -"cipherlist_OBSOLETED","deces.matchid.io/172.67.179.218","443","LOW","offered","","CWE-310" -"cipherlist_STRONG_NOFS","deces.matchid.io/172.67.179.218","443","INFO","not offered","","" -"cipherlist_STRONG_FS","deces.matchid.io/172.67.179.218","443","OK","offered","","" -"cipher_order-tls1_2","deces.matchid.io/172.67.179.218","443","OK","server","","" -"cipherorder_TLSv1_2","deces.matchid.io/172.67.179.218","443","INFO","ECDHE-ECDSA-AES128-GCM-SHA256","","" -"cipher_order","deces.matchid.io/172.67.179.218","443","OK","server -- TLS 1.3 client determined","","" -"FS","deces.matchid.io/172.67.179.218","443","OK","offered","","" -"FS_ciphers","deces.matchid.io/172.67.179.218","443","INFO","ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD","","" -"FS_ECDHE_curves","deces.matchid.io/172.67.179.218","443","OK","prime256v1","","" -"TLS_extensions","deces.matchid.io/172.67.179.218","443","INFO","'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'","","" -"TLS_session_ticket","deces.matchid.io/172.67.179.218","443","INFO","valid for 64800 seconds only (= 30 days","","" -"cert_notBefore","deces.matchid.io/172.67.179.218","443","INFO","2024-02-15 00:54","","" -"cert_notAfter","deces.matchid.io/172.67.179.218","443","OK","2024-05-15 00:54","","" -"cert_extlifeSpan","deces.matchid.io/172.67.179.218","443","OK","certificate has no extended life time according to browser forum","","" -"cert_eTLS","deces.matchid.io/172.67.179.218","443","INFO","not present","","" -"cert_crlDistributionPoints","deces.matchid.io/172.67.179.218","443","INFO","--","","" -"cert_ocspURL","deces.matchid.io/172.67.179.218","443","INFO","http://e1.o.lencr.org","","" -"OCSP_stapling","deces.matchid.io/172.67.179.218","443","OK","offered","","" -"cert_ocspRevoked","deces.matchid.io/172.67.179.218","443","WARN","unable to verify response","","" -"cert_mustStapleExtension","deces.matchid.io/172.67.179.218","443","INFO","--","","" -"DNS_CAArecord","deces.matchid.io/172.67.179.218","443","LOW","--","","" -"certificate_transparency","deces.matchid.io/172.67.179.218","443","OK","yes (certificate extension)","","" -"certs_countServer","deces.matchid.io/172.67.179.218","443","INFO","4","","" -"certs_list_ordering_problem","deces.matchid.io/172.67.179.218","443","INFO","no","","" -"cert_caIssuers","deces.matchid.io/172.67.179.218","443","INFO","E1 (Let's Encrypt from US)","","" -"intermediate_cert <#1>","deces.matchid.io/172.67.179.218","443","INFO","-----BEGIN CERTIFICATE-----\nMIICxjCCAk2gAwIBAgIRALO93/inhFu86QOgQTWzSkUwCgYIKoZIzj0EAwMwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDIwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCRTEwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQkXC2iKv0cS6Zdl3MnMayyoGli72XoprDwrEuf/xwLcA/TmC9N/A8AmzfwdAVXMpcuBe8qQyWj+240JxP2T35p0wKZXuskR5LBJJvmsSGPwSSB/GjMH2m6WPUZIvd0xhajggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFFrz7Sv8NsI3eblSMOpUb89Vyy6sMB8GA1UdIwQYMBaAFHxClq7eS0g7+pL4nozPbYupcjeVMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gyLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDIuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMAoGCCqGSM49BAMDA2cAMGQCMHt01VITjWH+Dbo/AwCd89eYhNlXLr3pD5xcSAQh8suzYHKOl9YST8pE9kLJ03uGqQIwWrGxtO3qYJkgsTgDyj2gJrjubi1K9sZmHzOa25JK1fUpE8ZwYii6I4zPPS/Lgul/\n-----END CERTIFICATE-----","","" -"intermediate_cert_fingerprintSHA256 <#1>","deces.matchid.io/172.67.179.218","443","INFO","46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA","","" -"intermediate_cert_notBefore <#1>","deces.matchid.io/172.67.179.218","443","INFO","2020-09-04 00:00","","" -"intermediate_cert_notAfter <#1>","deces.matchid.io/172.67.179.218","443","OK","2025-09-15 16:00","","" -"intermediate_cert_expiration <#1>","deces.matchid.io/172.67.179.218","443","OK","ok > 40 days","","" -"intermediate_cert_chain <#1>","deces.matchid.io/172.67.179.218","443","INFO","E1 <-- ISRG Root X2","","" -"intermediate_cert <#2>","deces.matchid.io/172.67.179.218","443","INFO","-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----","","" -"intermediate_cert_fingerprintSHA256 <#2>","deces.matchid.io/172.67.179.218","443","INFO","8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701","","" -"intermediate_cert_notBefore <#2>","deces.matchid.io/172.67.179.218","443","INFO","2020-09-04 00:00","","" -"intermediate_cert_notAfter <#2>","deces.matchid.io/172.67.179.218","443","OK","2025-09-15 16:00","","" -"intermediate_cert_expiration <#2>","deces.matchid.io/172.67.179.218","443","OK","ok > 40 days","","" -"intermediate_cert_chain <#2>","deces.matchid.io/172.67.179.218","443","INFO","ISRG Root X2 <-- ISRG Root X1","","" -"intermediate_cert <#3>","deces.matchid.io/172.67.179.218","443","INFO","-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----","","" -"intermediate_cert_fingerprintSHA256 <#3>","deces.matchid.io/172.67.179.218","443","INFO","6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F","","" -"intermediate_cert_notBefore <#3>","deces.matchid.io/172.67.179.218","443","INFO","2021-01-20 19:14","","" -"intermediate_cert_notAfter <#3>","deces.matchid.io/172.67.179.218","443","OK","2024-09-30 18:14","","" -"intermediate_cert_expiration <#3>","deces.matchid.io/172.67.179.218","443","OK","ok > 40 days","","" -"intermediate_cert_chain <#3>","deces.matchid.io/172.67.179.218","443","INFO","ISRG Root X1 <-- DST Root CA X3","","" -"intermediate_cert_badOCSP","deces.matchid.io/172.67.179.218","443","OK","intermediate certificate(s) is/are ok","","" -"HTTP_status_code","deces.matchid.io/172.67.179.218","443","INFO","200 OK ('/')","","" -"HTTP_clock_skew","deces.matchid.io/172.67.179.218","443","INFO","0 seconds from localtime","","" -"HTTP_headerTime","deces.matchid.io/172.67.179.218","443","INFO","1710637085","","" -"HSTS_time","deces.matchid.io/172.67.179.218","443","OK","180 days (=15552000 seconds) > 15552000 seconds","","" -"HSTS_subdomains","deces.matchid.io/172.67.179.218","443","OK","includes subdomains","","" -"HSTS_preload","deces.matchid.io/172.67.179.218","443","OK","domain IS marked for preloading","","" -"HPKP","deces.matchid.io/172.67.179.218","443","INFO","No support for HTTP Public Key Pinning","","" -"banner_server","deces.matchid.io/172.67.179.218","443","INFO","cloudflare","","" -"banner_application","deces.matchid.io/172.67.179.218","443","INFO","No application banner found","","" -"cookie_count","deces.matchid.io/172.67.179.218","443","INFO","0 at '/'","","" -"X-Frame-Options","deces.matchid.io/172.67.179.218","443","OK","*.matchid.io","","" -"X-Content-Type-Options","deces.matchid.io/172.67.179.218","443","OK","nosniff","","" -"Content-Security-Policy","deces.matchid.io/172.67.179.218","443","OK","default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com","","" -"X-XSS-Protection","deces.matchid.io/172.67.179.218","443","INFO","1; mode=block","","" -"Referrer-Policy","deces.matchid.io/172.67.179.218","443","INFO","same-origin","","" -"banner_reverseproxy","deces.matchid.io/172.67.179.218","443","INFO","--","","CWE-200" -"heartbleed","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no heartbeat extension","CVE-2014-0160","CWE-119" -"CCS","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2014-0224","CWE-310" -"ticketbleed","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2016-9244","CWE-200" -"ROBOT","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no RSA key transport cipher","CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168","CWE-203" -"secure_renego","deces.matchid.io/172.67.179.218","443","OK","supported","","CWE-310" -"secure_client_renego","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2011-1473","CWE-310" -"CRIME_TLS","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2012-4929","CWE-310" -"BREACH","deces.matchid.io/172.67.179.218","443","MEDIUM","potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested","CVE-2013-3587","CWE-310" -"POODLE_SSL","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no SSLv3","CVE-2014-3566","CWE-310" -"fallback_SCSV","deces.matchid.io/172.67.179.218","443","OK","no protocol below TLS 1.2 offered","","" -"SWEET32","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2016-2183 CVE-2016-6329","CWE-327" -"FREAK","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2015-0204","CWE-310" -"DROWN","deces.matchid.io/172.67.179.218","443","OK","not vulnerable on this host and port","CVE-2016-0800 CVE-2016-0703","CWE-310" -"DROWN_hint","deces.matchid.io/172.67.179.218","443","INFO","no RSA certificate, can't be used with SSLv2 elsewhere","CVE-2016-0800 CVE-2016-0703","CWE-310" -"LOGJAM","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no DH EXPORT ciphers,","CVE-2015-4000","CWE-310" -"LOGJAM-common_primes","deces.matchid.io/172.67.179.218","443","OK","no DH key with <= TLS 1.2","CVE-2015-4000","CWE-310" -"BEAST","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no SSL3 or TLS1","CVE-2011-3389","CWE-20" -"LUCKY13","deces.matchid.io/172.67.179.218","443","LOW","potentially vulnerable, uses TLS CBC ciphers","CVE-2013-0169","CWE-310" -"winshock","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2014-6321","CWE-94" -"RC4","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2013-2566 CVE-2015-2808","CWE-310" -"clientsimulation-android_60","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD","","" -"clientsimulation-android_70","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-android_81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-android_90","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-android_X","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-android_11","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-android_12","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-chrome_79_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-chrome_101_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-firefox_66_win81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-firefox_100_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-ie_6_xp","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" -"clientsimulation-ie_8_win7","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" -"clientsimulation-ie_8_xp","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" -"clientsimulation-ie_11_win7","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-ie_11_win81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-ie_11_winphone81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-ie_11_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-edge_15_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-edge_101_win10_21h2","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-safari_121_ios_122","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_CHACHA20_POLY1305_SHA256","","" -"clientsimulation-safari_130_osx_10146","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_CHACHA20_POLY1305_SHA256","","" -"clientsimulation-safari_154_osx_1231","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-java_7u25","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" -"clientsimulation-java_8u161","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-java1102","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-java1703","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_256_GCM_SHA384","","" -"clientsimulation-go_1178","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"clientsimulation-libressl_283","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305","","" -"clientsimulation-openssl_102e","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-openssl_110l","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305","","" -"clientsimulation-openssl_111d","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_256_GCM_SHA384","","" -"clientsimulation-openssl_303","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_256_GCM_SHA384","","" -"clientsimulation-apple_mail_16_0","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" -"clientsimulation-thunderbird_91_9","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" -"rating_spec","deces.matchid.io/172.67.179.218","443","INFO","SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)","","" -"rating_doc","deces.matchid.io/172.67.179.218","443","INFO","https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide","","" -"protocol_support_score","deces.matchid.io/172.67.179.218","443","INFO","100","","" -"protocol_support_score_weighted","deces.matchid.io/172.67.179.218","443","INFO","30","","" -"key_exchange_score","deces.matchid.io/172.67.179.218","443","INFO","100","","" -"key_exchange_score_weighted","deces.matchid.io/172.67.179.218","443","INFO","30","","" -"cipher_strength_score","deces.matchid.io/172.67.179.218","443","INFO","60","","" -"cipher_strength_score_weighted","deces.matchid.io/172.67.179.218","443","INFO","24","","" -"final_score","deces.matchid.io/172.67.179.218","443","INFO","84","","" -"overall_grade","deces.matchid.io/172.67.179.218","443","OK","A+","","" "service","deces.matchid.io/104.21.64.91","443","INFO","HTTP","","" "pre_128cipher","deces.matchid.io/104.21.64.91","443","INFO","No 128 cipher limit bug","","" "SSLv2","deces.matchid.io/104.21.64.91","443","OK","not offered","","" @@ -212,7 +48,7 @@ "cert_trust_wildcard","deces.matchid.io/104.21.64.91","443","LOW","trust is via wildcard","","" "cert_chain_of_trust","deces.matchid.io/104.21.64.91","443","OK","passed.","","" "cert_certificatePolicies_EV","deces.matchid.io/104.21.64.91","443","INFO","no","","" -"cert_expirationStatus","deces.matchid.io/104.21.64.91","443","OK","58 >= 30 days","","" +"cert_expirationStatus","deces.matchid.io/104.21.64.91","443","OK","51 >= 30 days","","" "cert_notBefore","deces.matchid.io/104.21.64.91","443","INFO","2024-02-15 00:54","","" "cert_notAfter","deces.matchid.io/104.21.64.91","443","OK","2024-05-15 00:54","","" "cert_extlifeSpan","deces.matchid.io/104.21.64.91","443","OK","certificate has no extended life time according to browser forum","","" @@ -248,7 +84,7 @@ "intermediate_cert_badOCSP","deces.matchid.io/104.21.64.91","443","OK","intermediate certificate(s) is/are ok","","" "HTTP_status_code","deces.matchid.io/104.21.64.91","443","INFO","200 OK ('/')","","" "HTTP_clock_skew","deces.matchid.io/104.21.64.91","443","INFO","0 seconds from localtime","","" -"HTTP_headerTime","deces.matchid.io/104.21.64.91","443","INFO","1710637126","","" +"HTTP_headerTime","deces.matchid.io/104.21.64.91","443","INFO","1711241938","","" "HSTS_time","deces.matchid.io/104.21.64.91","443","OK","180 days (=15552000 seconds) > 15552000 seconds","","" "HSTS_subdomains","deces.matchid.io/104.21.64.91","443","OK","includes subdomains","","" "HSTS_preload","deces.matchid.io/104.21.64.91","443","OK","domain IS marked for preloading","","" @@ -327,3 +163,167 @@ "cipher_strength_score_weighted","deces.matchid.io/104.21.64.91","443","INFO","24","","" "final_score","deces.matchid.io/104.21.64.91","443","INFO","84","","" "overall_grade","deces.matchid.io/104.21.64.91","443","OK","A+","","" +"service","deces.matchid.io/172.67.179.218","443","INFO","HTTP","","" +"pre_128cipher","deces.matchid.io/172.67.179.218","443","INFO","No 128 cipher limit bug","","" +"SSLv2","deces.matchid.io/172.67.179.218","443","OK","not offered","","" +"SSLv3","deces.matchid.io/172.67.179.218","443","OK","not offered","","" +"TLS1","deces.matchid.io/172.67.179.218","443","INFO","not offered","","" +"TLS1_1","deces.matchid.io/172.67.179.218","443","INFO","not offered","","" +"TLS1_2","deces.matchid.io/172.67.179.218","443","OK","offered","","" +"TLS1_3","deces.matchid.io/172.67.179.218","443","OK","offered with final","","" +"ALPN_HTTP2","deces.matchid.io/172.67.179.218","443","OK","h2","","" +"ALPN","deces.matchid.io/172.67.179.218","443","INFO","http/1.1","","" +"cipherlist_NULL","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" +"cipherlist_aNULL","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" +"cipherlist_EXPORT","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" +"cipherlist_LOW","deces.matchid.io/172.67.179.218","443","OK","not offered","","CWE-327" +"cipherlist_3DES_IDEA","deces.matchid.io/172.67.179.218","443","INFO","not offered","","CWE-310" +"cipherlist_OBSOLETED","deces.matchid.io/172.67.179.218","443","LOW","offered","","CWE-310" +"cipherlist_STRONG_NOFS","deces.matchid.io/172.67.179.218","443","INFO","not offered","","" +"cipherlist_STRONG_FS","deces.matchid.io/172.67.179.218","443","OK","offered","","" +"cipher_order-tls1_2","deces.matchid.io/172.67.179.218","443","OK","server","","" +"cipherorder_TLSv1_2","deces.matchid.io/172.67.179.218","443","INFO","ECDHE-ECDSA-AES128-GCM-SHA256","","" +"cipher_order","deces.matchid.io/172.67.179.218","443","OK","server -- TLS 1.3 client determined","","" +"FS","deces.matchid.io/172.67.179.218","443","OK","offered","","" +"FS_ciphers","deces.matchid.io/172.67.179.218","443","INFO","ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD","","" +"FS_ECDHE_curves","deces.matchid.io/172.67.179.218","443","OK","prime256v1","","" +"TLS_extensions","deces.matchid.io/172.67.179.218","443","INFO","'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'","","" +"TLS_session_ticket","deces.matchid.io/172.67.179.218","443","INFO","valid for 64800 seconds only (= 30 days","","" +"cert_notBefore","deces.matchid.io/172.67.179.218","443","INFO","2024-02-15 00:54","","" +"cert_notAfter","deces.matchid.io/172.67.179.218","443","OK","2024-05-15 00:54","","" +"cert_extlifeSpan","deces.matchid.io/172.67.179.218","443","OK","certificate has no extended life time according to browser forum","","" +"cert_eTLS","deces.matchid.io/172.67.179.218","443","INFO","not present","","" +"cert_crlDistributionPoints","deces.matchid.io/172.67.179.218","443","INFO","--","","" +"cert_ocspURL","deces.matchid.io/172.67.179.218","443","INFO","http://e1.o.lencr.org","","" +"OCSP_stapling","deces.matchid.io/172.67.179.218","443","OK","offered","","" +"cert_ocspRevoked","deces.matchid.io/172.67.179.218","443","WARN","unable to verify response","","" +"cert_mustStapleExtension","deces.matchid.io/172.67.179.218","443","INFO","--","","" +"DNS_CAArecord","deces.matchid.io/172.67.179.218","443","LOW","--","","" +"certificate_transparency","deces.matchid.io/172.67.179.218","443","OK","yes (certificate extension)","","" +"certs_countServer","deces.matchid.io/172.67.179.218","443","INFO","4","","" +"certs_list_ordering_problem","deces.matchid.io/172.67.179.218","443","INFO","no","","" +"cert_caIssuers","deces.matchid.io/172.67.179.218","443","INFO","E1 (Let's Encrypt from US)","","" +"intermediate_cert <#1>","deces.matchid.io/172.67.179.218","443","INFO","-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----","","" +"intermediate_cert_fingerprintSHA256 <#1>","deces.matchid.io/172.67.179.218","443","INFO","46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA","","" +"intermediate_cert_notBefore <#1>","deces.matchid.io/172.67.179.218","443","INFO","2020-09-04 00:00","","" +"intermediate_cert_notAfter <#1>","deces.matchid.io/172.67.179.218","443","OK","2025-09-15 16:00","","" +"intermediate_cert_expiration <#1>","deces.matchid.io/172.67.179.218","443","OK","ok > 40 days","","" +"intermediate_cert_chain <#1>","deces.matchid.io/172.67.179.218","443","INFO","E1 <-- ISRG Root X2","","" +"intermediate_cert <#2>","deces.matchid.io/172.67.179.218","443","INFO","-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----","","" +"intermediate_cert_fingerprintSHA256 <#2>","deces.matchid.io/172.67.179.218","443","INFO","8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701","","" +"intermediate_cert_notBefore <#2>","deces.matchid.io/172.67.179.218","443","INFO","2020-09-04 00:00","","" +"intermediate_cert_notAfter <#2>","deces.matchid.io/172.67.179.218","443","OK","2025-09-15 16:00","","" +"intermediate_cert_expiration <#2>","deces.matchid.io/172.67.179.218","443","OK","ok > 40 days","","" +"intermediate_cert_chain <#2>","deces.matchid.io/172.67.179.218","443","INFO","ISRG Root X2 <-- ISRG Root X1","","" +"intermediate_cert <#3>","deces.matchid.io/172.67.179.218","443","INFO","-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----","","" +"intermediate_cert_fingerprintSHA256 <#3>","deces.matchid.io/172.67.179.218","443","INFO","6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F","","" +"intermediate_cert_notBefore <#3>","deces.matchid.io/172.67.179.218","443","INFO","2021-01-20 19:14","","" +"intermediate_cert_notAfter <#3>","deces.matchid.io/172.67.179.218","443","OK","2024-09-30 18:14","","" +"intermediate_cert_expiration <#3>","deces.matchid.io/172.67.179.218","443","OK","ok > 40 days","","" +"intermediate_cert_chain <#3>","deces.matchid.io/172.67.179.218","443","INFO","ISRG Root X1 <-- DST Root CA X3","","" +"intermediate_cert_badOCSP","deces.matchid.io/172.67.179.218","443","OK","intermediate certificate(s) is/are ok","","" +"HTTP_status_code","deces.matchid.io/172.67.179.218","443","INFO","200 OK ('/')","","" +"HTTP_clock_skew","deces.matchid.io/172.67.179.218","443","INFO","0 seconds from localtime","","" +"HTTP_headerTime","deces.matchid.io/172.67.179.218","443","INFO","1711241978","","" +"HSTS_time","deces.matchid.io/172.67.179.218","443","OK","180 days (=15552000 seconds) > 15552000 seconds","","" +"HSTS_subdomains","deces.matchid.io/172.67.179.218","443","OK","includes subdomains","","" +"HSTS_preload","deces.matchid.io/172.67.179.218","443","OK","domain IS marked for preloading","","" +"HPKP","deces.matchid.io/172.67.179.218","443","INFO","No support for HTTP Public Key Pinning","","" +"banner_server","deces.matchid.io/172.67.179.218","443","INFO","cloudflare","","" +"banner_application","deces.matchid.io/172.67.179.218","443","INFO","No application banner found","","" +"cookie_count","deces.matchid.io/172.67.179.218","443","INFO","0 at '/'","","" +"X-Frame-Options","deces.matchid.io/172.67.179.218","443","OK","*.matchid.io","","" +"X-Content-Type-Options","deces.matchid.io/172.67.179.218","443","OK","nosniff","","" +"Content-Security-Policy","deces.matchid.io/172.67.179.218","443","OK","default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com","","" +"X-XSS-Protection","deces.matchid.io/172.67.179.218","443","INFO","1; mode=block","","" +"Referrer-Policy","deces.matchid.io/172.67.179.218","443","INFO","same-origin","","" +"banner_reverseproxy","deces.matchid.io/172.67.179.218","443","INFO","--","","CWE-200" +"heartbleed","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no heartbeat extension","CVE-2014-0160","CWE-119" +"CCS","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2014-0224","CWE-310" +"ticketbleed","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2016-9244","CWE-200" +"ROBOT","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no RSA key transport cipher","CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168","CWE-203" +"secure_renego","deces.matchid.io/172.67.179.218","443","OK","supported","","CWE-310" +"secure_client_renego","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2011-1473","CWE-310" +"CRIME_TLS","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2012-4929","CWE-310" +"BREACH","deces.matchid.io/172.67.179.218","443","MEDIUM","potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested","CVE-2013-3587","CWE-310" +"POODLE_SSL","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no SSLv3","CVE-2014-3566","CWE-310" +"fallback_SCSV","deces.matchid.io/172.67.179.218","443","OK","no protocol below TLS 1.2 offered","","" +"SWEET32","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2016-2183 CVE-2016-6329","CWE-327" +"FREAK","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2015-0204","CWE-310" +"DROWN","deces.matchid.io/172.67.179.218","443","OK","not vulnerable on this host and port","CVE-2016-0800 CVE-2016-0703","CWE-310" +"DROWN_hint","deces.matchid.io/172.67.179.218","443","INFO","no RSA certificate, can't be used with SSLv2 elsewhere","CVE-2016-0800 CVE-2016-0703","CWE-310" +"LOGJAM","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no DH EXPORT ciphers,","CVE-2015-4000","CWE-310" +"LOGJAM-common_primes","deces.matchid.io/172.67.179.218","443","OK","no DH key with <= TLS 1.2","CVE-2015-4000","CWE-310" +"BEAST","deces.matchid.io/172.67.179.218","443","OK","not vulnerable, no SSL3 or TLS1","CVE-2011-3389","CWE-20" +"LUCKY13","deces.matchid.io/172.67.179.218","443","LOW","potentially vulnerable, uses TLS CBC ciphers","CVE-2013-0169","CWE-310" +"winshock","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2014-6321","CWE-94" +"RC4","deces.matchid.io/172.67.179.218","443","OK","not vulnerable","CVE-2013-2566 CVE-2015-2808","CWE-310" +"clientsimulation-android_60","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD","","" +"clientsimulation-android_70","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-android_81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-android_90","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-android_X","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-android_11","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-android_12","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-chrome_79_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-chrome_101_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-firefox_66_win81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-firefox_100_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-ie_6_xp","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" +"clientsimulation-ie_8_win7","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" +"clientsimulation-ie_8_xp","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" +"clientsimulation-ie_11_win7","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-ie_11_win81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-ie_11_winphone81","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-ie_11_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-edge_15_win10","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-edge_101_win10_21h2","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-safari_121_ios_122","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_CHACHA20_POLY1305_SHA256","","" +"clientsimulation-safari_130_osx_10146","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_CHACHA20_POLY1305_SHA256","","" +"clientsimulation-safari_154_osx_1231","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-java_7u25","deces.matchid.io/172.67.179.218","443","INFO","No connection","","" +"clientsimulation-java_8u161","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-java1102","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-java1703","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_256_GCM_SHA384","","" +"clientsimulation-go_1178","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"clientsimulation-libressl_283","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305","","" +"clientsimulation-openssl_102e","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-openssl_110l","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305","","" +"clientsimulation-openssl_111d","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_256_GCM_SHA384","","" +"clientsimulation-openssl_303","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_256_GCM_SHA384","","" +"clientsimulation-apple_mail_16_0","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256","","" +"clientsimulation-thunderbird_91_9","deces.matchid.io/172.67.179.218","443","INFO","TLSv1.3 TLS_AES_128_GCM_SHA256","","" +"rating_spec","deces.matchid.io/172.67.179.218","443","INFO","SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)","","" +"rating_doc","deces.matchid.io/172.67.179.218","443","INFO","https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide","","" +"protocol_support_score","deces.matchid.io/172.67.179.218","443","INFO","100","","" +"protocol_support_score_weighted","deces.matchid.io/172.67.179.218","443","INFO","30","","" +"key_exchange_score","deces.matchid.io/172.67.179.218","443","INFO","100","","" +"key_exchange_score_weighted","deces.matchid.io/172.67.179.218","443","INFO","30","","" +"cipher_strength_score","deces.matchid.io/172.67.179.218","443","INFO","60","","" +"cipher_strength_score_weighted","deces.matchid.io/172.67.179.218","443","INFO","24","","" +"final_score","deces.matchid.io/172.67.179.218","443","INFO","84","","" +"overall_grade","deces.matchid.io/172.67.179.218","443","OK","A+","","" diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.html b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.html index caede9aa..f6364053 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.html +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.html @@ -21,17 +21,17 @@ ########################################################### Using "OpenSSL 1.0.2-bad (1.0.2k-dev)" [~183 ciphers] - on fv-az692-637:/home/testssl/bin/openssl.Linux.x86_64 + on fv-az1205-275:/home/testssl/bin/openssl.Linux.x86_64 (built: "Sep 1 14:03:44 2022", platform: "linux-x86_64") -Testing all IPv4 addresses (port 443): 172.67.179.218 104.21.64.91 +Testing all IPv4 addresses (port 443): 104.21.64.91 172.67.179.218 ----------------------------------------------------- - Start 2024-03-17 00:57:50 -->> 172.67.179.218:443 (deces.matchid.io) <<-- + Start 2024-03-24 00:58:43 -->> 104.21.64.91:443 (deces.matchid.io) <<-- - Further IP addresses: 104.21.64.91 2606:4700:3030::6815:405b - 2606:4700:3031::ac43:b3da - rDNS (172.67.179.218): -- + Further IP addresses: 172.67.179.218 2606:4700:3031::ac43:b3da + 2606:4700:3030::6815:405b + rDNS (104.21.64.91): -- Service detected: HTTP @@ -97,7 +97,7 @@ "compress_certificate/#27" Session Ticket RFC 5077 hint 64800 seconds, session tickets keys seems to be rotated < daily SSL Session ID support yes - Session Resumption Tickets: yes, ID: yes + Session Resumption Tickets: yes, ID: no TLS clock skew Random values, no fingerprinting possible Certificate Compression 0002/Brotli Client Authentication none @@ -115,7 +115,7 @@ https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=5EF4365D64D5D14DD7380946FFD65FCBCDC3BB141139C9614514CD19CE1919D7 Chain of trust Ok EV cert (experimental) no - Certificate Validity (UTC) 58 >= 30 days (2024-02-15 00:54 --> 2024-05-15 00:54) + Certificate Validity (UTC) 51 >= 30 days (2024-02-15 00:54 --> 2024-05-15 00:54) ETS/"eTLS", visibility info not present Certificate Revocation List -- OCSP URI http://e1.o.lencr.org @@ -250,14 +250,14 @@ Final Score 84 Overall Grade A+ - Done 2024-03-17 00:58:30 [ 41s] -->> 172.67.179.218:443 (deces.matchid.io) <<-- + Done 2024-03-24 00:59:23 [ 42s] -->> 104.21.64.91:443 (deces.matchid.io) <<-- ----------------------------------------------------- - Start 2024-03-17 00:58:31 -->> 104.21.64.91:443 (deces.matchid.io) <<-- + Start 2024-03-24 00:59:23 -->> 172.67.179.218:443 (deces.matchid.io) <<-- - Further IP addresses: 172.67.179.218 2606:4700:3030::6815:405b - 2606:4700:3031::ac43:b3da - rDNS (104.21.64.91): -- + Further IP addresses: 104.21.64.91 2606:4700:3031::ac43:b3da + 2606:4700:3030::6815:405b + rDNS (172.67.179.218): -- Service detected: HTTP @@ -341,7 +341,7 @@ https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=5EF4365D64D5D14DD7380946FFD65FCBCDC3BB141139C9614514CD19CE1919D7 Chain of trust Ok EV cert (experimental) no - Certificate Validity (UTC) 58 >= 30 days (2024-02-15 00:54 --> 2024-05-15 00:54) + Certificate Validity (UTC) 51 >= 30 days (2024-02-15 00:54 --> 2024-05-15 00:54) ETS/"eTLS", visibility info not present Certificate Revocation List -- OCSP URI http://e1.o.lencr.org @@ -476,10 +476,10 @@ Final Score 84 Overall Grade A+ - Done 2024-03-17 00:59:11 [ 82s] -->> 104.21.64.91:443 (deces.matchid.io) <<-- + Done 2024-03-24 01:00:04 [ 83s] -->> 172.67.179.218:443 (deces.matchid.io) <<-- ----------------------------------------------------- -Done testing now all IP addresses (on port 443): 172.67.179.218 104.21.64.91 +Done testing now all IP addresses (on port 443): 104.21.64.91 172.67.179.218 diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.json b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.json index afab7b2b..352b2219 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.json +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/testssl.json @@ -1,77 +1,77 @@ [ { "id" : "service", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "HTTP" } , { "id" : "pre_128cipher", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No 128 cipher limit bug" } , { "id" : "SSLv2", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "not offered" } , { "id" : "SSLv3", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "not offered" } , { "id" : "TLS1", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "not offered" } , { "id" : "TLS1_1", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "not offered" } , { "id" : "TLS1_2", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "TLS1_3", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "offered with final" } , { "id" : "ALPN_HTTP2", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "h2" } , { "id" : "ALPN", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "http/1.1" } , { "id" : "cipherlist_NULL", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -79,7 +79,7 @@ } , { "id" : "cipherlist_aNULL", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -87,7 +87,7 @@ } , { "id" : "cipherlist_EXPORT", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -95,7 +95,7 @@ } , { "id" : "cipherlist_LOW", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -103,7 +103,7 @@ } , { "id" : "cipherlist_3DES_IDEA", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "cwe" : "CWE-310", @@ -111,7 +111,7 @@ } , { "id" : "cipherlist_OBSOLETED", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "LOW", "cwe" : "CWE-310", @@ -119,581 +119,581 @@ } , { "id" : "cipherlist_STRONG_NOFS", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "not offered" } , { "id" : "cipherlist_STRONG_FS", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "cipher_order-tls1_2", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "server" } , { "id" : "cipherorder_TLSv1_2", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "cipher_order", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "server -- TLS 1.3 client determined" } , { "id" : "FS", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "FS_ciphers", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" } , { "id" : "FS_ECDHE_curves", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "prime256v1" } , { "id" : "TLS_extensions", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" } , { "id" : "TLS_session_ticket", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "valid for 64800 seconds only (= 30 days" + "finding" : "51 >= 30 days" } , { "id" : "cert_notBefore", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "2024-02-15 00:54" } , { "id" : "cert_notAfter", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "2024-05-15 00:54" } , { "id" : "cert_extlifeSpan", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "certificate has no extended life time according to browser forum" } , { "id" : "cert_eTLS", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "not present" } , { "id" : "cert_crlDistributionPoints", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "--" } , { "id" : "cert_ocspURL", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "http://e1.o.lencr.org" } , { "id" : "OCSP_stapling", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "cert_ocspRevoked", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "WARN", "finding" : "unable to verify response" } , { "id" : "cert_mustStapleExtension", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "--" } , { "id" : "DNS_CAArecord", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "LOW", "finding" : "--" } , { "id" : "certificate_transparency", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "yes (certificate extension)" } , { "id" : "certs_countServer", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "4" } , { "id" : "certs_list_ordering_problem", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "no" } , { "id" : "cert_caIssuers", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "E1 (Let's Encrypt from US)" } , { "id" : "intermediate_cert <#1>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "-----BEGIN CERTIFICATE-----\nMIICxjCCAk2gAwIBAgIRALO93/inhFu86QOgQTWzSkUwCgYIKoZIzj0EAwMwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDIwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCRTEwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQkXC2iKv0cS6Zdl3MnMayyoGli72XoprDwrEuf/xwLcA/TmC9N/A8AmzfwdAVXMpcuBe8qQyWj+240JxP2T35p0wKZXuskR5LBJJvmsSGPwSSB/GjMH2m6WPUZIvd0xhajggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFFrz7Sv8NsI3eblSMOpUb89Vyy6sMB8GA1UdIwQYMBaAFHxClq7eS0g7+pL4nozPbYupcjeVMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gyLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDIuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMAoGCCqGSM49BAMDA2cAMGQCMHt01VITjWH+Dbo/AwCd89eYhNlXLr3pD5xcSAQh8suzYHKOl9YST8pE9kLJ03uGqQIwWrGxtO3qYJkgsTgDyj2gJrjubi1K9sZmHzOa25JK1fUpE8ZwYii6I4zPPS/Lgul/\n-----END CERTIFICATE-----" } , { "id" : "intermediate_cert_fingerprintSHA256 <#1>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA" } , { "id" : "intermediate_cert_notBefore <#1>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "2020-09-04 00:00" } , { "id" : "intermediate_cert_notAfter <#1>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "2025-09-15 16:00" } , { "id" : "intermediate_cert_expiration <#1>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "ok > 40 days" } , { "id" : "intermediate_cert_chain <#1>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "E1 <-- ISRG Root X2" } , { "id" : "intermediate_cert <#2>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "-----BEGIN CERTIFICATE-----\nMIIEYDCCAkigAwIBAgIQB55JKIY3b9QISMI/xjHkYzANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBYMTAeFw0yMDA5MDQwMDAwMDBaFw0yNTA5MTUxNjAwMDBaME8xCzAJBgNVBAYTAlVTMSkwJwYDVQQKEyBJbnRlcm5ldCBTZWN1cml0eSBSZXNlYXJjaCBHcm91cDEVMBMGA1UEAxMMSVNSRyBSb290IFgyMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEzZvVn4CDCuwJSvMWSj5cz3es3mcFDR0HttwW+1qLFNvicWDEukWVEYmO6gbf9yoWHKS5xcUy4APgHoIYOIvXRdgKam7mAHf7AlF9ItgKbppbd9/w+kHsOdx1ymgHDB/qo4HlMIHiMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBR8Qpau3ktIO/qS+J6Mz22LqXI3lTAfBgNVHSMEGDAWgBR5tFnme7bl5AFzgAiIyBpY9umbbjAyBggrBgEFBQcBAQQmMCQwIgYIKwYBBQUHMAKGFmh0dHA6Ly94MS5pLmxlbmNyLm9yZy8wJwYDVR0fBCAwHjAcoBqgGIYWaHR0cDovL3gxLmMubGVuY3Iub3JnLzAiBgNVHSAEGzAZMAgGBmeBDAECATANBgsrBgEEAYLfEwEBATANBgkqhkiG9w0BAQsFAAOCAgEAG38lK5B6CHYAdxjhwy6KNkxBfr8XS+Mw11sMfpyWmG97sGjAJETM4vL80erb0p8B+RdNDJ1V/aWtbdIvP0tywC6uc8clFlfCPhWt4DHRCoSEbGJ4QjEiRhrtekC/lxaBRHfKbHtdIVwH8hGRIb/hL8Lvbv0FIOS093nzLbs3KvDGsaysUfUfs1oeZs5YBxg4f3GpPIO617yCnpp2D56wKf3L84kHSBv+q5MuFCENX6+Ot1SrXQ7UW0xx0JLqPaM2m3wf4DtVudhTU8yDZrtK3IEGABiL9LPXSLETQbnEtp7PLHeOQiALgH6fxatI27xvBI1sRikCDXCKHfESc7ZGJEKeKhcY46zHmMJyzG0tdm3dLCsmlqXPIQgb5dovy++fc5Ou+DZfR4+XKM6r4pgmmIv97igyIintTJUJxCD6B+GGLET2gUfA5GIy7R3YPEiIlsNekbave1mk7uOGnMeIWMooKmZVm4WAuR3YQCvJHBM8qevemcIWQPb1pK4qJWxSuscETLQyu/w4XKAMYXtX7HdOUM+vBqIPN4zhDtLTLxq9nHE+zOH40aijvQT2GcD5hq/1DhqqlWvvykdxS2McTZbbVSMKnQ+BdaDmQPVkRgNuzvpqfQbspDQGdNpT2Lm4xiN9qfgqLaSCpi4tEcrmzTFYeYXmchynn9NM0GbQp7s=\n-----END CERTIFICATE-----" } , { "id" : "intermediate_cert_fingerprintSHA256 <#2>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701" } , { "id" : "intermediate_cert_notBefore <#2>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "2020-09-04 00:00" } , { "id" : "intermediate_cert_notAfter <#2>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "2025-09-15 16:00" } , { "id" : "intermediate_cert_expiration <#2>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "ok > 40 days" } , { "id" : "intermediate_cert_chain <#2>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "ISRG Root X2 <-- ISRG Root X1" } , { "id" : "intermediate_cert <#3>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" } , { "id" : "intermediate_cert_fingerprintSHA256 <#3>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" } , { "id" : "intermediate_cert_notBefore <#3>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "2021-01-20 19:14" } , { "id" : "intermediate_cert_notAfter <#3>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "2024-09-30 18:14" } , { "id" : "intermediate_cert_expiration <#3>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "ok > 40 days" } , { "id" : "intermediate_cert_chain <#3>", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "ISRG Root X1 <-- DST Root CA X3" } , { "id" : "intermediate_cert_badOCSP", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "intermediate certificate(s) is/are ok" } , { "id" : "HTTP_status_code", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "200 OK ('/')" } , { "id" : "HTTP_clock_skew", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "0 seconds from localtime" } , { "id" : "HTTP_headerTime", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", - "finding" : "1710637085" + "finding" : "1711241938" } , { "id" : "HSTS_time", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "180 days (=15552000 seconds) > 15552000 seconds" } , { "id" : "HSTS_subdomains", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "includes subdomains" } , { "id" : "HSTS_preload", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "domain IS marked for preloading" } , { "id" : "HPKP", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No support for HTTP Public Key Pinning" } , { "id" : "banner_server", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "cloudflare" } , { "id" : "banner_application", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No application banner found" } , { "id" : "cookie_count", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "0 at '/'" } , { "id" : "X-Frame-Options", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "*.matchid.io" } , { "id" : "X-Content-Type-Options", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "nosniff" } , { "id" : "Content-Security-Policy", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com" } , { "id" : "X-XSS-Protection", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "1; mode=block" } , { "id" : "Referrer-Policy", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "same-origin" } , { "id" : "banner_reverseproxy", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "cwe" : "CWE-200", @@ -701,7 +701,7 @@ } , { "id" : "heartbleed", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-0160", @@ -710,7 +710,7 @@ } , { "id" : "CCS", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-0224", @@ -719,7 +719,7 @@ } , { "id" : "ticketbleed", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2016-9244", @@ -728,7 +728,7 @@ } , { "id" : "ROBOT", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -737,7 +737,7 @@ } , { "id" : "secure_renego", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cwe" : "CWE-310", @@ -745,7 +745,7 @@ } , { "id" : "secure_client_renego", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2011-1473", @@ -754,7 +754,7 @@ } , { "id" : "CRIME_TLS", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2012-4929", @@ -763,7 +763,7 @@ } , { "id" : "BREACH", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "MEDIUM", "cve" : "CVE-2013-3587", @@ -772,7 +772,7 @@ } , { "id" : "POODLE_SSL", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-3566", @@ -781,14 +781,14 @@ } , { "id" : "fallback_SCSV", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "no protocol below TLS 1.2 offered" } , { "id" : "SWEET32", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2016-2183 CVE-2016-6329", @@ -797,7 +797,7 @@ } , { "id" : "FREAK", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2015-0204", @@ -806,7 +806,7 @@ } , { "id" : "DROWN", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2016-0800 CVE-2016-0703", @@ -815,7 +815,7 @@ } , { "id" : "DROWN_hint", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "cve" : "CVE-2016-0800 CVE-2016-0703", @@ -824,7 +824,7 @@ } , { "id" : "LOGJAM", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2015-4000", @@ -833,7 +833,7 @@ } , { "id" : "LOGJAM-common_primes", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2015-4000", @@ -842,7 +842,7 @@ } , { "id" : "BEAST", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2011-3389", @@ -851,7 +851,7 @@ } , { "id" : "LUCKY13", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "LOW", "cve" : "CVE-2013-0169", @@ -860,7 +860,7 @@ } , { "id" : "winshock", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-6321", @@ -869,7 +869,7 @@ } , { "id" : "RC4", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "cve" : "CVE-2013-2566 CVE-2015-2808", @@ -878,392 +878,392 @@ } , { "id" : "clientsimulation-android_60", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" } , { "id" : "clientsimulation-android_70", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-android_81", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-android_90", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-android_X", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-android_11", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-android_12", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-chrome_79_win10", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-chrome_101_win10", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-firefox_66_win81", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-firefox_100_win10", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-ie_6_xp", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-ie_8_win7", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-ie_8_xp", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-ie_11_win7", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-ie_11_win81", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-ie_11_winphone81", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-ie_11_win10", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-edge_15_win10", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-edge_101_win10_21h2", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-safari_121_ios_122", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" } , { "id" : "clientsimulation-safari_130_osx_10146", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" } , { "id" : "clientsimulation-safari_154_osx_1231", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-java_7u25", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-java_8u161", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-java1102", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-java1703", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_256_GCM_SHA384" } , { "id" : "clientsimulation-go_1178", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-libressl_283", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" } , { "id" : "clientsimulation-openssl_102e", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-openssl_110l", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" } , { "id" : "clientsimulation-openssl_111d", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_256_GCM_SHA384" } , { "id" : "clientsimulation-openssl_303", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_256_GCM_SHA384" } , { "id" : "clientsimulation-apple_mail_16_0", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-thunderbird_91_9", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "rating_spec", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" } , { "id" : "rating_doc", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" } , { "id" : "protocol_support_score", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "100" } , { "id" : "protocol_support_score_weighted", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "30" } , { "id" : "key_exchange_score", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "100" } , { "id" : "key_exchange_score_weighted", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "30" } , { "id" : "cipher_strength_score", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "60" } , { "id" : "cipher_strength_score_weighted", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "24" } , { "id" : "final_score", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "INFO", "finding" : "84" } , { "id" : "overall_grade", - "ip" : "deces.matchid.io/172.67.179.218", + "ip" : "deces.matchid.io/104.21.64.91", "port" : "443", "severity" : "OK", "finding" : "A+" } , { "id" : "service", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "HTTP" } , { "id" : "pre_128cipher", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No 128 cipher limit bug" } , { "id" : "SSLv2", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "not offered" } , { "id" : "SSLv3", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "not offered" } , { "id" : "TLS1", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "not offered" } , { "id" : "TLS1_1", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "not offered" } , { "id" : "TLS1_2", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "TLS1_3", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "offered with final" } , { "id" : "ALPN_HTTP2", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "h2" } , { "id" : "ALPN", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "http/1.1" } , { "id" : "cipherlist_NULL", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -1271,7 +1271,7 @@ } , { "id" : "cipherlist_aNULL", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -1279,7 +1279,7 @@ } , { "id" : "cipherlist_EXPORT", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -1287,7 +1287,7 @@ } , { "id" : "cipherlist_LOW", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cwe" : "CWE-327", @@ -1295,7 +1295,7 @@ } , { "id" : "cipherlist_3DES_IDEA", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "cwe" : "CWE-310", @@ -1303,7 +1303,7 @@ } , { "id" : "cipherlist_OBSOLETED", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "LOW", "cwe" : "CWE-310", @@ -1311,581 +1311,581 @@ } , { "id" : "cipherlist_STRONG_NOFS", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "not offered" } , { "id" : "cipherlist_STRONG_FS", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "cipher_order-tls1_2", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "server" } , { "id" : "cipherorder_TLSv1_2", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "cipher_order", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "server -- TLS 1.3 client determined" } , { "id" : "FS", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "FS_ciphers", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD" } , { "id" : "FS_ECDHE_curves", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "prime256v1" } , { "id" : "TLS_extensions", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" } , { "id" : "TLS_session_ticket", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "valid for 64800 seconds only (= 30 days" + "finding" : "51 >= 30 days" } , { "id" : "cert_notBefore", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "2024-02-15 00:54" } , { "id" : "cert_notAfter", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "2024-05-15 00:54" } , { "id" : "cert_extlifeSpan", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "certificate has no extended life time according to browser forum" } , { "id" : "cert_eTLS", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "not present" } , { "id" : "cert_crlDistributionPoints", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "--" } , { "id" : "cert_ocspURL", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "http://e1.o.lencr.org" } , { "id" : "OCSP_stapling", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "offered" } , { "id" : "cert_ocspRevoked", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "WARN", "finding" : "unable to verify response" } , { "id" : "cert_mustStapleExtension", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "--" } , { "id" : "DNS_CAArecord", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "LOW", "finding" : "--" } , { "id" : "certificate_transparency", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "yes (certificate extension)" } , { "id" : "certs_countServer", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "4" } , { "id" : "certs_list_ordering_problem", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "no" } , { "id" : "cert_caIssuers", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "E1 (Let's Encrypt from US)" } , { "id" : "intermediate_cert <#1>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "-----BEGIN CERTIFICATE-----\nMIICxjCCAk2gAwIBAgIRALO93/inhFu86QOgQTWzSkUwCgYIKoZIzj0EAwMwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDIwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCRTEwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQkXC2iKv0cS6Zdl3MnMayyoGli72XoprDwrEuf/xwLcA/TmC9N/A8AmzfwdAVXMpcuBe8qQyWj+240JxP2T35p0wKZXuskR5LBJJvmsSGPwSSB/GjMH2m6WPUZIvd0xhajggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFFrz7Sv8NsI3eblSMOpUb89Vyy6sMB8GA1UdIwQYMBaAFHxClq7eS0g7+pL4nozPbYupcjeVMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gyLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDIuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMAoGCCqGSM49BAMDA2cAMGQCMHt01VITjWH+Dbo/AwCd89eYhNlXLr3pD5xcSAQh8suzYHKOl9YST8pE9kLJ03uGqQIwWrGxtO3qYJkgsTgDyj2gJrjubi1K9sZmHzOa25JK1fUpE8ZwYii6I4zPPS/Lgul/\n-----END CERTIFICATE-----" } , { "id" : "intermediate_cert_fingerprintSHA256 <#1>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA" } , { "id" : "intermediate_cert_notBefore <#1>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "2020-09-04 00:00" } , { "id" : "intermediate_cert_notAfter <#1>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "2025-09-15 16:00" } , { "id" : "intermediate_cert_expiration <#1>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "ok > 40 days" } , { "id" : "intermediate_cert_chain <#1>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "E1 <-- ISRG Root X2" } , { "id" : "intermediate_cert <#2>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" } , { "id" : "intermediate_cert_fingerprintSHA256 <#2>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701" } , { "id" : "intermediate_cert_notBefore <#2>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "2020-09-04 00:00" } , { "id" : "intermediate_cert_notAfter <#2>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "2025-09-15 16:00" } , { "id" : "intermediate_cert_expiration <#2>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "ok > 40 days" } , { "id" : "intermediate_cert_chain <#2>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "ISRG Root X2 <-- ISRG Root X1" } , { "id" : "intermediate_cert <#3>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" } , { "id" : "intermediate_cert_fingerprintSHA256 <#3>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" } , { "id" : "intermediate_cert_notBefore <#3>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "2021-01-20 19:14" } , { "id" : "intermediate_cert_notAfter <#3>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "2024-09-30 18:14" } , { "id" : "intermediate_cert_expiration <#3>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "ok > 40 days" } , { "id" : "intermediate_cert_chain <#3>", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "ISRG Root X1 <-- DST Root CA X3" } , { "id" : "intermediate_cert_badOCSP", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "intermediate certificate(s) is/are ok" } , { "id" : "HTTP_status_code", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "200 OK ('/')" } , { "id" : "HTTP_clock_skew", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "0 seconds from localtime" } , { "id" : "HTTP_headerTime", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", - "finding" : "1710637126" + "finding" : "1711241978" } , { "id" : "HSTS_time", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "180 days (=15552000 seconds) > 15552000 seconds" } , { "id" : "HSTS_subdomains", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "includes subdomains" } , { "id" : "HSTS_preload", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "domain IS marked for preloading" } , { "id" : "HPKP", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No support for HTTP Public Key Pinning" } , { "id" : "banner_server", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "cloudflare" } , { "id" : "banner_application", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No application banner found" } , { "id" : "cookie_count", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "0 at '/'" } , { "id" : "X-Frame-Options", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "*.matchid.io" } , { "id" : "X-Content-Type-Options", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "nosniff" } , { "id" : "Content-Security-Policy", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com" } , { "id" : "X-XSS-Protection", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "1; mode=block" } , { "id" : "Referrer-Policy", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "same-origin" } , { "id" : "banner_reverseproxy", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "cwe" : "CWE-200", @@ -1893,7 +1893,7 @@ } , { "id" : "heartbleed", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-0160", @@ -1902,7 +1902,7 @@ } , { "id" : "CCS", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-0224", @@ -1911,7 +1911,7 @@ } , { "id" : "ticketbleed", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2016-9244", @@ -1920,7 +1920,7 @@ } , { "id" : "ROBOT", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -1929,7 +1929,7 @@ } , { "id" : "secure_renego", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cwe" : "CWE-310", @@ -1937,7 +1937,7 @@ } , { "id" : "secure_client_renego", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2011-1473", @@ -1946,7 +1946,7 @@ } , { "id" : "CRIME_TLS", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2012-4929", @@ -1955,7 +1955,7 @@ } , { "id" : "BREACH", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "MEDIUM", "cve" : "CVE-2013-3587", @@ -1964,7 +1964,7 @@ } , { "id" : "POODLE_SSL", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-3566", @@ -1973,14 +1973,14 @@ } , { "id" : "fallback_SCSV", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "no protocol below TLS 1.2 offered" } , { "id" : "SWEET32", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2016-2183 CVE-2016-6329", @@ -1989,7 +1989,7 @@ } , { "id" : "FREAK", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2015-0204", @@ -1998,7 +1998,7 @@ } , { "id" : "DROWN", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2016-0800 CVE-2016-0703", @@ -2007,7 +2007,7 @@ } , { "id" : "DROWN_hint", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "cve" : "CVE-2016-0800 CVE-2016-0703", @@ -2016,7 +2016,7 @@ } , { "id" : "LOGJAM", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2015-4000", @@ -2025,7 +2025,7 @@ } , { "id" : "LOGJAM-common_primes", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2015-4000", @@ -2034,7 +2034,7 @@ } , { "id" : "BEAST", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2011-3389", @@ -2043,7 +2043,7 @@ } , { "id" : "LUCKY13", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "LOW", "cve" : "CVE-2013-0169", @@ -2052,7 +2052,7 @@ } , { "id" : "winshock", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2014-6321", @@ -2061,7 +2061,7 @@ } , { "id" : "RC4", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "cve" : "CVE-2013-2566 CVE-2015-2808", @@ -2070,324 +2070,324 @@ } , { "id" : "clientsimulation-android_60", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" } , { "id" : "clientsimulation-android_70", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-android_81", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-android_90", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-android_X", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-android_11", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-android_12", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-chrome_79_win10", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-chrome_101_win10", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-firefox_66_win81", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-firefox_100_win10", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-ie_6_xp", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-ie_8_win7", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-ie_8_xp", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-ie_11_win7", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-ie_11_win81", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-ie_11_winphone81", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-ie_11_win10", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-edge_15_win10", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-edge_101_win10_21h2", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-safari_121_ios_122", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" } , { "id" : "clientsimulation-safari_130_osx_10146", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" } , { "id" : "clientsimulation-safari_154_osx_1231", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-java_7u25", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "No connection" } , { "id" : "clientsimulation-java_8u161", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-java1102", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-java1703", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_256_GCM_SHA384" } , { "id" : "clientsimulation-go_1178", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "clientsimulation-libressl_283", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" } , { "id" : "clientsimulation-openssl_102e", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-openssl_110l", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" } , { "id" : "clientsimulation-openssl_111d", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_256_GCM_SHA384" } , { "id" : "clientsimulation-openssl_303", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_256_GCM_SHA384" } , { "id" : "clientsimulation-apple_mail_16_0", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" } , { "id" : "clientsimulation-thunderbird_91_9", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "TLSv1.3 TLS_AES_128_GCM_SHA256" } , { "id" : "rating_spec", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" } , { "id" : "rating_doc", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" } , { "id" : "protocol_support_score", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "100" } , { "id" : "protocol_support_score_weighted", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "30" } , { "id" : "key_exchange_score", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "100" } , { "id" : "key_exchange_score_weighted", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "30" } , { "id" : "cipher_strength_score", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "60" } , { "id" : "cipher_strength_score_weighted", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "24" } , { "id" : "final_score", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", "finding" : "84" } , { "id" : "overall_grade", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "OK", "finding" : "A+" } , { "id" : "scanTime", - "ip" : "deces.matchid.io/104.21.64.91", + "ip" : "deces.matchid.io/172.67.179.218", "port" : "443", "severity" : "INFO", - "finding" : "82" + "finding" : "83" } ] diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/thirdparties.json b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/thirdparties.json index 2d3b0db4..114f824b 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/thirdparties.json +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/thirdparties.json @@ -22,7 +22,7 @@ }, { "type": "google", - "url": "https://analytics.google.com/g/collect?v=2&tid=G-49J1J0GERX>m=45je43d0v892384882za200&_p=1710637056315&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=1001559062.1710637056&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&pscdl=noapi&_s=1&sid=1710637056&sct=1&seg=0&dl=https%3A%2F%2Fdeces.matchid.io%2Fsearch&dt=matchID%20-%20Moteur%20de%20recherche%20des%20personnes%20d%C3%A9c%C3%A9d%C3%A9es&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=837", + "url": "https://analytics.google.com/g/collect?v=2&tid=G-49J1J0GERX>m=45je43k0v892384882za200&_p=1711241908841&_gaz=1&gcd=13l3l3l3l1&npa=0&dma=0&cid=120817971.1711241909&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&pscdl=noapi&_s=1&sid=1711241908&sct=1&seg=0&dl=https%3A%2F%2Fdeces.matchid.io%2Fsearch&dt=matchID%20-%20Moteur%20de%20recherche%20des%20personnes%20d%C3%A9c%C3%A9d%C3%A9es&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=841", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -30,7 +30,7 @@ }, { "type": "google analytics", - "url": "https://stats.g.doubleclick.net/g/collect?v=2&tid=G-49J1J0GERX&cid=1001559062.1710637056>m=45je43d0v892384882za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0", + "url": "https://stats.g.doubleclick.net/g/collect?v=2&tid=G-49J1J0GERX&cid=120817971.1711241909>m=45je43k0v892384882za200&aip=1&dma=0&gcd=13l3l3l3l1&npa=0", "details": { "id": "google analytics", "message": "Use hosted Matomo instance" @@ -38,7 +38,7 @@ }, { "type": "google", - "url": "https://analytics.google.com/g/collect?v=2&tid=G-49J1J0GERX>m=45je43d0v892384882za200&_p=1710637056315&gcd=13l3l3l3l1&npa=0&dma=0&cid=1001559062.1710637056&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&pscdl=noapi&sid=1710637056&sct=1&seg=0&dl=https%3A%2F%2Fdeces.matchid.io%2Fsearch&dt=matchID%20-%20Moteur%20de%20recherche%20des%20personnes%20d%C3%A9c%C3%A9d%C3%A9es&_s=2&tfd=856", + "url": "https://analytics.google.com/g/collect?v=2&tid=G-49J1J0GERX>m=45je43k0v892384882za200&_p=1711241908841&gcd=13l3l3l3l1&npa=0&dma=0&cid=120817971.1711241909&ul=en-us&sr=800x600&uaa=&uab=&uafvl=&uamb=0&uam=&uap=&uapv=&uaw=0&pscdl=noapi&sid=1711241908&sct=1&seg=0&dl=https%3A%2F%2Fdeces.matchid.io%2Fsearch&dt=matchID%20-%20Moteur%20de%20recherche%20des%20personnes%20d%C3%A9c%C3%A9d%C3%A9es&_s=2&tfd=860", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -46,11 +46,11 @@ }, { "type": "unknown", - "url": "https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202403130201/show_ads_impl.js" + "url": "https://pagead2.googlesyndication.com/pagead/managed/js/adsense/m202403210101/show_ads_impl.js?bust=31082131" }, { "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6277851622494904&output=html&adk=1812271804&adf=3025194257&lmt=1709688562&plat=1%3A8%2C2%3A8%2C3%3A2162688%2C4%3A2162688%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1048576%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fdeces.matchid.io%2Fsearch&pra=5&wgl=1&easpi=0&asro=0&aseiel=1~2~4~6~8~9~10~11~12~13~14~15~16~17~18~19~20~21&uach=WyIiLCIiLCIiLCIiLCIiLG51bGwsMCxudWxsLCIiLG51bGwsMF0.&dt=1710637056377&bpp=15&bdt=723&idt=223&shv=r20240313&mjsv=m202403130201&ptt=9&saldr=aa&abxe=1&nras=1&correlator=3431290131096&frm=20&pv=2&ga_vid=1001559062.1710637056&ga_sid=1710637057&ga_hid=771879605&ga_fc=1&u_tz=0&u_his=2&u_h=600&u_w=800&u_ah=600&u_aw=800&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=800&bih=600&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C42532524%2C95325974%2C95327950%2C95327955%2C95325785&oid=2&pvsid=4198778842078168&tmod=1680459200&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C800%2C0%2C800%2C600%2C800%2C600&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=33792&bc=31&bz=1&psd=W251bGwsbnVsbCxudWxsLDNd&ifi=1&uci=a!1&fsb=1&dtd=241", + "url": "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-6277851622494904&output=html&adk=1812271804&adf=3025194257&lmt=1709688562&plat=1%3A8%2C2%3A8%2C3%3A2162688%2C4%3A2162688%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1048576%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fdeces.matchid.io%2Fsearch&pra=5&wgl=1&easpi=0&asro=0&uach=WyIiLCIiLCIiLCIiLCIiLG51bGwsMCxudWxsLCIiLG51bGwsMF0.&dt=1711241908905&bpp=14&bdt=721&idt=224&shv=r20240320&mjsv=m202403210101&ptt=9&saldr=aa&abxe=1&nras=1&correlator=7419196857454&frm=20&pv=2&ga_vid=120817971.1711241909&ga_sid=1711241909&ga_hid=229599750&ga_fc=1&u_tz=0&u_his=2&u_h=600&u_w=800&u_ah=600&u_aw=800&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=800&bih=600&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759837%2C31081576%2C31082033%2C44798934%2C95326315%2C31082131%2C95320378%2C31081792&oid=2&pvsid=4207171047842736&tmod=2055764357&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C800%2C0%2C800%2C600%2C800%2C600&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=33792&bc=31&bz=1&psd=W251bGwsbnVsbCxudWxsLDNd&ifi=1&uci=a!1&fsb=1&dtd=246", "details": { "id": "google analytics", "message": "Use hosted Matomo instance" @@ -58,7 +58,7 @@ }, { "type": "unknown", - "url": "https://pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20240313&st=env" + "url": "https://pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20240320&st=env" }, { "type": "unknown", @@ -78,35 +78,35 @@ }, { "type": "unknown", - "url": "https://pagead2.googlesyndication.com/bg/J7jMHEcdr0lVSatsUU1en4le0CiJfA3--2xrJ7e0v4U.js" + "url": "https://pagead2.googlesyndication.com/bg/ClgGLJT-anMFFp_jPcSPgTpNjWBfoBtPLqdYJvwYrrQ.js" }, { "type": "unknown", - "url": "https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20240313&jk=4198778842078168&rc=" + "url": "https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20240320&jk=4207171047842736&rc=" }, { "type": "unknown", - "url": "https://tpc.googlesyndication.com/generate_204?NRWE2g" + "url": "https://tpc.googlesyndication.com/generate_204?0vUFnQ" }, { "type": "unknown", - "url": "https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20240313&jk=4198778842078168&bg=!mpmlmdbNAAY_ejuoH3o7ADQBe5WfOMd-XqJhbE4IXiqyi6zcj4ud9pMuidQQ2vspQRZjbr3FSVMRMpoibzrfhnyDlaItAgAAAFFSAAAAAmgBB5kDGxWeIUZlcVChbDL-SNz0lWWRJjd_vAfUuntDhlRWpl1jyCtdOevzaJfkmbUelJ-6wq61DiSyIwHA0SDY8SnUnryzxaoqj_HoDUYdRGJknUT8d-iVPv2zu6X16RTn7FFOLUiuvI1N0yD_fmRF3CF1AE-RSIZlx629ARfAYBNBHHMH7pmx3xn77ouPYsthCRBPuNUseU1qp4hCy90III5tGTdtlHHQxvNTg4V-TaLYFFJC1jB4BzuMc0P7fYA8vzOUXE-sOAO5GEaPLsLy0_7xQDQ8rnNk-Fa2jekv5drY-n6-bVaQy8pbF4zZusIsNtPiChnK0M89JQ7cQnOjKq3Wb4YG074bHUHEl5FTw_Nv8MKfMzE4j4iSTgRmhHxuXWAR1qjo2IfFMRonGcyvG5_-KzgWXQXRzbn-vhKOQVcJ2Bhcf0vg8fWEcEGMUjXZYo4e18Slpb9LbI303kkDdjJ7mBMGOFwA30Dh_FhNNbhD0YAbPDlM1sSVraeotjDlP-d9h0--9nzL42k6gX1KI13jCKlNFk9CsLqp1RU_aGQW4vpZRXiVeC4JQLHUlUb5tillsjSkKXMaMtGvKoPsu2vfaJT_dxWoF_mq6TiRGmiuOIDE3qP3OL7ZD7AsEhlvGy91UCzOlB4rIVZzsNq6K_LsO2XTkDtQV5Wctetms2clVKAvTXC0emf5vaQblMK_lve8EhtoL1PD_22dQ58NcQUsFrzS3ElvXtfoI6LHNBJ-iiwnjRQrqHQ3CjJlxxz0qCWlPik79wKypVjcd_-or_h5lZOyaTOriQiOIRrfDIU6JC1F08d8Wnz3e7_sTHN6GoAa2C-SqLjpJ26gRqS3V37gQRZURX8UilkQIqa1PvR28D2fHLqtUMJrnAdld45FlYl05T4HawN5eFeRISkUnveruBJ76bmDzY3LsfVzWwmxiNQuyRBXNA1BLgh7wKMs79_yWhnd_mAdx-h5oGlHTZmg-D_gDGx2omwj1hVlt9Lgr-JIOd4NB-9JM8j7yOPCsJ1Fyz3hs-hApR2hc63QwHih8oxvnCgqoWdKX5hrJQ" + "url": "https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20240320&jk=4207171047842736&bg=!HB-lH1DNAAZaswqNerM7ADQBe5WfOALZKhGxTWdvNwUh62Ti4pvCFhf2yGxc9NX8jjPZmKWlfrHvswyfBJ8Mhiyj8e-IAgAAAFVSAAAAA2gBB34ANGPDK3ePDHVihgsYkmrDeV2eIfC38iYeOj8SCgayk85ghA__MOINHgWE_ZpgFFOMUF43aJwKABY1701QWCm1_S2JTFLtnJYHBhORXSXbmQKmNJVd2zGYHv1l73QY2IRjFRimGJfJljTL5I4s7Gf1dkKtaHZFCLEDEZMq6LojiofzACDsDuqHY3HQlnjUM8CAD5cn5mIsZpVSwh9dgxeHHi4AVFBWIm6Nk_dHVeGeGGd7CX4VlxPEmurCMje251iYEe4ALQ81xn7SF8RyksDazc4vPnM0a701TTM3I_rfv58k4zVyXXffo_mwR72RE0w5kPSetdJkr4YmaEXpVcaejNv1OagUieJbgt5Q9UazsbxJ984BRMWRRP-eNSld4d69V-eiTYXKJdVyMhk1IWAB_534TD2Vaagkk-bcgem_6yZ6O_e9G6UlmCmT8sOt3PKQE2h-jM5ntw-uSplLyzXSQQlCIzdtwaXF2TASCoU9LgKoqeADmG5gfS-t7oEwyuWUSv1oW-Gk0OhrTwikcW0MCaY6Ui6n7ytncvPNhLexiVXxTnUwLHLmrazK0FVNdbySsCmI9WZiOyBYzMNthzPb6mPiXpCKi-sNx5RBg5nmR8s0m6-EOqhxheX_XN4aDWTnwtSAM7Ui7BVuOI7uNUgldzqH9ljLCjf6gOOPcqaM3Z9bAlcQTmcMC94i6njLI5XMVAUa5RPjV11OVqiNUKG61jO_TNPq62SYFau7rnY2kj9flEJxbQHaCvlewsGmSSzornuHM7YFVilz3u-9xfdgqgL2jSGc_RVKbhGFfbpW3xu8aE-zY__G2dqQR9Q5pBDWcZIivNoZm35ir2GLbVVWGtHoBT7NkwsOPQien7gvdFDQW0fRDlJJFj7Nc8KkqapJqmzf3NDMYZhQJXAx3krOn1plSxdKlPKL4ChOMzIPQk63wBAa5_l3dOJIM0WrQxWxJC8i_oKBZWxQsyNemXx_YeQadrL63PpKK5K78yDwUEL6TzMrf-MN" } ], "cookies": [], "headers": { "alt-svc": "h3=\":443\"; ma=86400", "cf-cache-status": "DYNAMIC", - "cf-ray": "8659079d189c10c4-ORD", + "cf-ray": "8692b6854b2089f4-ORD", "content-encoding": "br", "content-security-policy": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", "content-type": "text/html", - "date": "Sun, 17 Mar 2024 00:57:35 GMT", + "date": "Sun, 24 Mar 2024 00:58:28 GMT", "feature-policy": "geolocation 'none';midi 'none';sync-xhr 'none';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'self';accelerometer 'self';fullscreen 'self';payment 'none';", "last-modified": "Wed, 06 Mar 2024 01:29:22 GMT", "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", "referrer-policy": "same-origin", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=WxlrEJXyPNZXAGhgWKkP3uR%2BlfvDc3i1Vjm5DMlkRG%2BP63WQl10He5%2Bjzv0N2iY%2FeI9HMVUiEZ9MWOgAsU0gzK6GLoAe2sJUBGZoVEhSPocLLvtAXSNj%2FDD3JCZVpSOjs2C6\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=qzZNx8saGtl6oFX1BTf9FI4RLuxP85ownqpruJexl6DuD6C1dE%2Br0kAWKwb4b%2B%2F2m%2FcxdwmJRXJj7a93o%2ByuYPB0SAA73QmS6K8L0vJJRRpUuC0Lv8Fjp1xNSASEKJnNV2jr\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "server": "cloudflare", "strict-transport-security": "max-age=15552000; includeSubDomains; preload", "x-content-type-options": "nosniff", @@ -190,7 +190,7 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "172.217.4.200", + "ip": "142.250.190.104", "geoip": { "continent": { "code": "NA", @@ -244,14 +244,8 @@ }, { "hostname": "pagead2.googlesyndication.com", - "ip": "142.251.32.2", + "ip": "142.250.191.98", "geoip": { - "city": { - "geoname_id": 5133273, - "names": { - "en": "Queens" - } - }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -281,14 +275,10 @@ } }, "location": { - "accuracy_radius": 500, - "latitude": 40.66, - "longitude": -73.839, - "metro_code": 501, - "time_zone": "America/New_York" - }, - "postal": { - "code": "11414" + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -303,28 +293,12 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 5128638, - "iso_code": "NY", - "names": { - "de": "New York", - "en": "New York", - "es": "Nueva York", - "fr": "New York", - "ja": "ニューヨーク州", - "pt-BR": "Nova Iorque", - "ru": "Нью-Йорк", - "zh-CN": "纽约州" - } - } - ] + } } }, { "hostname": "analytics.google.com", - "ip": "216.239.34.181", + "ip": "172.217.1.110", "geoip": { "continent": { "code": "NA", @@ -356,9 +330,9 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 34.0544, - "longitude": -118.244, - "time_zone": "America/Los_Angeles" + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, @@ -373,28 +347,12 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] + } } }, { "hostname": "stats.g.doubleclick.net", - "ip": "142.251.176.155", + "ip": "142.251.165.156", "geoip": { "city": { "geoname_id": 5116931, @@ -474,7 +432,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "142.250.191.162", + "ip": "142.250.191.226", "geoip": { "continent": { "code": "NA", @@ -528,7 +486,7 @@ }, { "hostname": "tpc.googlesyndication.com", - "ip": "142.250.191.225", + "ip": "142.250.191.193", "geoip": { "continent": { "code": "NA", @@ -582,7 +540,7 @@ }, { "hostname": "www.google.com", - "ip": "172.217.2.36", + "ip": "142.250.191.228", "geoip": { "continent": { "code": "NA", diff --git a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/zap.html b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/zap.html index 5870438a..e1230274 100644 --- a/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/zap.html +++ b/results/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/zap.html @@ -127,7 +127,7 @@

- Generated on Sun, 17 Mar 2024 00:57:04 + Generated on Sun, 24 Mar 2024 00:57:54

@@ -206,22 +206,22 @@

Alerts

CSP: Wildcard Directive Medium - 3 + 2 CSP: script-src unsafe-eval Medium - 3 + 2 CSP: script-src unsafe-inline Medium - 3 + 2 CSP: style-src unsafe-inline Medium - 3 + 2 Sub Resource Integrity Attribute Missing @@ -246,7 +246,7 @@

Alerts

Base64 Disclosure Informational - 12 + 10 Information Disclosure - Suspicious Comments @@ -261,12 +261,12 @@

Alerts

Re-examine Cache-control Directives Informational - 4 + 5 Retrieved from Cache Informational - 7 + 1 Sec-Fetch-Dest Header is Missing @@ -349,40 +349,6 @@

Alert Detail

The following directives either allow wildcard sources (or ancestors), are not defined, or are overly broadly defined: style-src, frame-ancestors, form-action -The directive(s): frame-ancestors, form-action are among the directives that do not fallback to default-src, missing/excluding them is the same as allowing anything. - - - - URL - https://deces.matchid.io/ - - - Method - GET - - - Parameter - Content-Security-Policy - - - Attack - - - - Evidence - default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com - - - Other Info - The following directives either allow wildcard sources (or ancestors), are not defined, or are overly broadly defined: -style-src, frame-ancestors, form-action - The directive(s): frame-ancestors, form-action are among the directives that do not fallback to default-src, missing/excluding them is the same as allowing anything. @@ -422,7 +388,7 @@

Alert Detail

Instances - 3 + 2 Solution @@ -516,37 +482,6 @@

Alert Detail

script-src includes unsafe-eval. - - URL - https://deces.matchid.io/ - - - Method - GET - - - Parameter - Content-Security-Policy - - - Attack - - - - Evidence - default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com - - - Other Info - script-src includes unsafe-eval. - - URL @@ -580,7 +515,7 @@

Alert Detail

Instances - 3 + 2 Solution @@ -674,37 +609,6 @@

Alert Detail

script-src includes unsafe-inline. - - URL - https://deces.matchid.io/ - - - Method - GET - - - Parameter - Content-Security-Policy - - - Attack - - - - Evidence - default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com - - - Other Info - script-src includes unsafe-inline. - - URL @@ -738,7 +642,7 @@

Alert Detail

Instances - 3 + 2 Solution @@ -832,37 +736,6 @@

Alert Detail

style-src includes unsafe-inline. - - URL - https://deces.matchid.io/ - - - Method - GET - - - Parameter - Content-Security-Policy - - - Attack - - - - Evidence - default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com - - - Other Info - style-src includes unsafe-inline. - - URL @@ -896,7 +769,7 @@

Alert Detail

Instances - 3 + 2 Solution @@ -1488,43 +1361,12 @@

Alert Detail

Evidence - 2BUSRoYYMPWjsDQLsFXUpmJeYlbOlbF - - - Other Info - �F�0���4 �UԦb^bVΕ� - - - - URL - https://deces.matchid.io - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - 2BkQiSRuvMruOga3WSxZtMwwEibnt9G3K2 + lswP9P2Ej8XUR1Dyj13dkuVJRJERMtmT5bw Other Info - ��$n���:�Y,Y��0&�ѷ+ + ��������GP�]ݒ�ID�2ٓ� @@ -1550,12 +1392,12 @@

Alert Detail

Evidence - 2Bo85E0WeajuPYFCJsLJ6PDmv6veC1XTTm0vQl0LZ8B0P26ND8CjcbYvBnQVeLy5lDUynr + 2BLNKXgVvrhfQMetYwvc0tmRIEsfqvdYWFN9bLPk5C66MHXL20yzSVoorCS72NkmI8fRVZULBHYdKraMiJHQb7RJdcVa1deX41seitXdtzgaCQxEWvfnMJx9EpX Other Info - �<�My��=�B&����濫� U�Nm/B] g�t?n���q�/tx���52� + ��)x��_@ǭc ��ّ K��XXS}l���.�0u��L�IZ(�$���&#��U� v*�����o�Iu�Z�ח�[��ݷ8 DZ��0�}� @@ -1581,13 +1423,12 @@

Alert Detail

Evidence - 2BM1ZVlDr2k4F9W0oudSa2oIuLcXxqyxq57CCz0FGrRxt1KvwEoKVRd5GXlJU9rZaIMRwSjf2PTOHdwJ13z8UieBPb0iRlzB2m9dMATVeUV1 + 2FUPDVXIIoMNHjpu2JjjSd82Na1pSGp312xGJNNxo5FDqJ35AMk31jIbQCik5SIAwh5jgRV7f14X Other Info - �5eYC�i8մ��Rkj��Ƭ���� =�q�R��J -UyyIS��h��(����� �|�R'�=�"F\��o]0�yEu + �U U�"� :nؘ�I�65�iHjw�lF$�q��C����7�2@(��"�c�{^ @@ -1613,12 +1454,12 @@

Alert Detail

Evidence - 2F9TcHtmECgUwBqqyJm07QicD6R5lJ35VFy2uvqq90mrzXmjUaQgi0FbvwKrhabQsM3K + 2Bcgy92HmKl09fev7o8dMqU1ecO4WleDu2e Other Info - �_Sp{f(��ș����y���T\�����I��y�Q� �A[����а�� + � �݇��t����2�5yøZW��g @@ -1644,12 +1485,12 @@

Alert Detail

Evidence - BJf5QdJwusNdo6kBFRI3Q0XCjvG9XHaMTo3P7E8iV9eT9GP2XLkwvO + 2BdtKFH5zxAjqRiUUQPxwaWVxHbAGqzGC6ZKz7m0BmyNoGNg13e Other Info - ��A�p��]��7CEŽ�\v�N���O"Wד�c�\�0� + �m(Q��#��Q�����v��� �JϹ�l��c`�w @@ -1675,12 +1516,12 @@

Alert Detail

Evidence - 2BBwby0ZrZDCYGeUMC0RrXRPy3bqGQbNf7pz + 2FxttF2cQNYegDPsYWEdXn9vwDbbhcwCAYYhzkgX Other Info - �po-���`g�0-�tO�v���s + �\m�]�@��3�aa^o�6ۅ��!�H @@ -1706,12 +1547,12 @@

Alert Detail

Evidence - 2FC0JShVLXYqm8Qi8Unm5lkMmD4eUhC2x73raI8JJrZJ + 2FuqiBO0NV5V9CqImmvq2ukVWPea5dnO1zwbf2lQFB4f2eOZfJg1zjwoWYTvbs1Ubxu Other Info - �P�%(U-v*��"�I��Y �>R�ǽ�h� &�I + �[���5^U�*��k���X������<iP��|�5�<(Y��n�To @@ -1737,12 +1578,12 @@

Alert Detail

Evidence - 2B9T4ZzohszDpFbgZR8s1VNrwjvyDWY1 + 2BHw375DOaU47cUgIhh2sf1kQOSq87TSWZJtUOrYSvcTo4vSuH Other Info - �S���äV�e,�Sk�;� f5 + ��߾C9�8�� "v��d@���Y�mP��J���Ҹ @@ -1768,43 +1609,13 @@

Alert Detail

Evidence - 2BILW4FolkJMWdqD6iqXuIOTnWUcU77HTZSh1sxOkU0W - - - Other Info - � [�h�BLYڃ�*�����eS��M����N�M - - - - URL - https://deces.matchid.io/manifest.json - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - mJWTywfi26twQMcdMdYdJvapVLebgY + ZwruYTh5Ek5WUbepBXaPS4Drmeej3FIIgglKBn4vloWT1DyujXZuAnj Other Info - �����۫p@�1�&��T��� + g +�a8yNVQ��v�K����R� J~/����<��vnx @@ -1830,17 +1641,17 @@

Alert Detail

Evidence - 2Bg7Gy1g1BFhPMolG0OgC9Y0kSZzpeBH6bJQg5L + 15T0wU7n2toEymJ46TJc4pPGRYwxcCQRhXUGtbAUG24jWau0NhmFykhJkOWCJ2qboxZwdEWk9UytGlZbFbgY Other Info - �;-`�a<�%C� �4�&s��G�P�� + ה��N����bx�2\��E�1p$�u��n#Y��6��HI��'j��ptE��L�V[� Instances - 12 + 10 Solution @@ -1995,7 +1806,7 @@

Alert Detail

Evidence - <script defer src="/js/matchid.min.js" type="3e42580513e13eb4c7e96254-text/javascript"></script> + <script defer src="/js/matchid.min.js" type="785542294bdcd3b4644f8a30-text/javascript"></script> Alert Detail Evidence - <script defer src="/js/matchid.min.js" type="fb60056563dc27747d8e1062-text/javascript"></script> + <script defer src="/js/matchid.min.js" type="c2a068076550f683b37c1183-text/javascript"></script> Alert Detail Evidence - <script defer src="/js/matchid.min.js" type="8b9e819b3f076da0fb1f05de-text/javascript"></script> + <script defer src="/js/matchid.min.js" type="e50f44c200e6be6c7bda1dd6-text/javascript"></script> Alert Detail Evidence - <script defer src="/js/matchid.min.js" type="4a359324d280e793de99f73e-text/javascript"></script> + <script defer src="/js/matchid.min.js" type="6e8cf1975b4d0aa4349c3c5d-text/javascript"></script> Alert Detail + + URL + https://deces.matchid.io/robots.txt + + + Method + GET + + + Parameter + cache-control + + + Attack + + + + Evidence + max-age=86400 + + + Other Info + + + URL @@ -2271,7 +2113,7 @@

Alert Detail

Instances - 4 + 5 Solution @@ -2351,193 +2193,7 @@

Alert Detail

Evidence - Age: 1321 - - - Other Info - The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use. - - - - URL - https://deces.matchid.io/css/global.css - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - Age: 1322 - - - Other Info - The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use. - - - - URL - https://deces.matchid.io/css/matchid.min.css - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - Age: 139 - - - Other Info - The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use. - - - - URL - https://deces.matchid.io/favicon-apple.png - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - Age: 1324 - - - Other Info - The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use. - - - - URL - https://deces.matchid.io/favicon.svg - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - Age: 1323 - - - Other Info - The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use. - - - - URL - https://deces.matchid.io/js/matchid.min.js - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - Age: 139 - - - Other Info - The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use. - - - - URL - https://deces.matchid.io/robots.txt - - - Method - GET - - - Parameter - - - - Attack - - - - Evidence - Age: 140 + Age: 1113 Alert Detail Instances - 7 + 1 Solution @@ -2649,7 +2305,7 @@

Alert Detail

URL - https://deces.matchid.io/favicon.svg + https://deces.matchid.io/build/module/bundle.css Alert Detail URL - https://deces.matchid.io/favicon.svg + https://deces.matchid.io/build/module/bundle.css Alert Detail URL - https://deces.matchid.io/favicon.svg + https://deces.matchid.io/build/module/bundle.css Alert Detail URL - https://deces.matchid.io/favicon.svg + https://deces.matchid.io/build/module/bundle.css Ensure that your web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header.

", "otherinfo": "

The following directives either allow wildcard sources (or ancestors), are not defined, or are overly broadly defined:

style-src, frame-ancestors, form-action

The directive(s): frame-ancestors, form-action are among the directives that do not fallback to default-src, missing/excluding them is the same as allowing anything.

", "reference": "

https://www.w3.org/TR/CSP/

https://caniuse.com/#search=content+security+policy

https://content-security-policy.com/

https://github.com/HtmlUnit/htmlunit-csp

https://developers.google.com/web/fundamentals/security/csp#policy_applies_to_a_wide_variety_of_resources

", @@ -70,14 +62,6 @@ "evidence": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", "otherinfo": "script-src includes unsafe-eval." }, - { - "uri": "https://deces.matchid.io/", - "method": "GET", - "param": "Content-Security-Policy", - "attack": "", - "evidence": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", - "otherinfo": "script-src includes unsafe-eval." - }, { "uri": "https://deces.matchid.io/sitemap.xml", "method": "GET", @@ -87,7 +71,7 @@ "otherinfo": "script-src includes unsafe-eval." } ], - "count": "3", + "count": "2", "solution": "

Ensure that your web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header.

", "otherinfo": "

script-src includes unsafe-eval.

", "reference": "

https://www.w3.org/TR/CSP/

https://caniuse.com/#search=content+security+policy

https://content-security-policy.com/

https://github.com/HtmlUnit/htmlunit-csp

https://developers.google.com/web/fundamentals/security/csp#policy_applies_to_a_wide_variety_of_resources

", @@ -113,14 +97,6 @@ "evidence": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", "otherinfo": "script-src includes unsafe-inline." }, - { - "uri": "https://deces.matchid.io/", - "method": "GET", - "param": "Content-Security-Policy", - "attack": "", - "evidence": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", - "otherinfo": "script-src includes unsafe-inline." - }, { "uri": "https://deces.matchid.io/sitemap.xml", "method": "GET", @@ -130,7 +106,7 @@ "otherinfo": "script-src includes unsafe-inline." } ], - "count": "3", + "count": "2", "solution": "

Ensure that your web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header.

", "otherinfo": "

script-src includes unsafe-inline.

", "reference": "

https://www.w3.org/TR/CSP/

https://caniuse.com/#search=content+security+policy

https://content-security-policy.com/

https://github.com/HtmlUnit/htmlunit-csp

https://developers.google.com/web/fundamentals/security/csp#policy_applies_to_a_wide_variety_of_resources

", @@ -156,14 +132,6 @@ "evidence": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", "otherinfo": "style-src includes unsafe-inline." }, - { - "uri": "https://deces.matchid.io/", - "method": "GET", - "param": "Content-Security-Policy", - "attack": "", - "evidence": "default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' static.cloudflareinsights.com ajax.cloudflare.com www.googletagmanager.com fundingchoicesmessages.google.com www.google.com www.google.ca analytics.google.com www.google-analytics.com pagead2.googlesyndication.com partner.googleadservices.com tpc.googlesyndication.com www.googletagservices.com adservice.google.com adservice.google.fr;style-src https: 'self' 'unsafe-inline';font-src 'self' data:;img-src 'self' matchid.io a.basemaps.cartocdn.com b.basemaps.cartocdn.com c.basemaps.cartocdn.com upload.wikimedia.org pagead2.googlesyndication.com www.google-analytics.com stats.g.doubleclick.net www.google.fr;connect-src 'self' www.data.gouv.fr cloudflareinsights.com www.google-analytics.com analytics.google.com csi.gstatic.com region1.analytics.google.com stats.g.doubleclick.net pagead2.googlesyndication.com; frame-src 'self' matchid.io www.google.com google.com googleads.g.doubleclick.net tpc.googlesyndication.com", - "otherinfo": "style-src includes unsafe-inline." - }, { "uri": "https://deces.matchid.io/sitemap.xml", "method": "GET", @@ -173,7 +141,7 @@ "otherinfo": "style-src includes unsafe-inline." } ], - "count": "3", + "count": "2", "solution": "

Ensure that your web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header.

", "otherinfo": "

style-src includes unsafe-inline.

", "reference": "

https://www.w3.org/TR/CSP/

https://caniuse.com/#search=content+security+policy

https://content-security-policy.com/

https://github.com/HtmlUnit/htmlunit-csp

https://developers.google.com/web/fundamentals/security/csp#policy_applies_to_a_wide_variety_of_resources

", @@ -206,7 +174,7 @@ "reference": "

https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity

", "cweid": "345", "wascid": "15", - "sourceid": "28" + "sourceid": "32" }, { "pluginid": "10020", @@ -327,7 +295,7 @@ "reference": "

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy

https://developer.chrome.com/blog/feature-policy/

https://scotthelme.co.uk/a-new-security-header-feature-policy/

https://w3c.github.io/webappsec-feature-policy/

https://www.smashingmagazine.com/2018/12/feature-policy/

", "cweid": "693", "wascid": "15", - "sourceid": "23" + "sourceid": "21" }, { "pluginid": "10094", @@ -344,105 +312,89 @@ "method": "GET", "param": "", "attack": "", - "evidence": "2BUSRoYYMPWjsDQLsFXUpmJeYlbOlbF", - "otherinfo": "\uFFFD\\x0015\\x0012F\uFFFD\\x00180\uFFFD\uFFFD\uFFFD4\\x000b\uFFFDU\u0526b^bV\u0395\uFFFD" - }, - { - "uri": "https://deces.matchid.io", - "method": "GET", - "param": "", - "attack": "", - "evidence": "2BkQiSRuvMruOga3WSxZtMwwEibnt9G3K2", - "otherinfo": "\uFFFD\\x0019\\x0010\uFFFD$n\uFFFD\uFFFD\uFFFD:\\x0006\uFFFDY,Y\uFFFD\uFFFD0\\x0012&\uFFFD\u0477+" + "evidence": "lswP9P2Ej8XUR1Dyj13dkuVJRJERMtmT5bw", + "otherinfo": "\uFFFD\uFFFD\\x000f\uFFFD\uFFFD\uFFFD\uFFFD\uFFFD\uFFFDGP\uFFFD]\u0752\uFFFDID\uFFFD\\x00112\u0653\uFFFD" }, { "uri": "https://deces.matchid.io/", "method": "GET", "param": "", "attack": "", - "evidence": "2Bo85E0WeajuPYFCJsLJ6PDmv6veC1XTTm0vQl0LZ8B0P26ND8CjcbYvBnQVeLy5lDUynr", - "otherinfo": "\uFFFD\\x001a<\uFFFDM\\x0016y\uFFFD\uFFFD=\uFFFDB&\uFFFD\uFFFD\uFFFD\uFFFD\u6FEB\uFFFD\\x000bU\uFFFDNm/B]\\x000bg\uFFFDt?n\uFFFD\\x000f\uFFFD\uFFFDq\uFFFD/\\x0006t\\x0015x\uFFFD\uFFFD\uFFFD52\uFFFD" + "evidence": "2BLNKXgVvrhfQMetYwvc0tmRIEsfqvdYWFN9bLPk5C66MHXL20yzSVoorCS72NkmI8fRVZULBHYdKraMiJHQb7RJdcVa1deX41seitXdtzgaCQxEWvfnMJx9EpX", + "otherinfo": "\uFFFD\\x0012\uFFFD)x\\x0015\uFFFD\uFFFD_@\u01EDc\\x000b\uFFFD\uFFFD\u0651 K\\x001f\uFFFD\uFFFDXXS}l\uFFFD\uFFFD\uFFFD.\uFFFD0u\uFFFD\uFFFDL\uFFFDIZ(\uFFFD$\uFFFD\uFFFD\uFFFD&#\uFFFD\uFFFDU\uFFFD\\x000b\\x0004v\\x001d*\uFFFD\uFFFD\uFFFD\uFFFD\uFFFDo\uFFFDIu\uFFFDZ\uFFFD\u05D7\uFFFD[\\x001e\uFFFD\uFFFD\u07778\\x001a\t\\x000cDZ\uFFFD\uFFFD0\uFFFD}\\x0012\uFFFD" }, { "uri": "https://deces.matchid.io/build/module/bundle.css", "method": "GET", "param": "", "attack": "", - "evidence": "2BM1ZVlDr2k4F9W0oudSa2oIuLcXxqyxq57CCz0FGrRxt1KvwEoKVRd5GXlJU9rZaIMRwSjf2PTOHdwJ13z8UieBPb0iRlzB2m9dMATVeUV1", - "otherinfo": "\uFFFD\\x00135eYC\uFFFDi8\\x0017\u0574\uFFFD\uFFFDRkj\\x0008\uFFFD\uFFFD\\x0017\u01AC\uFFFD\uFFFD\uFFFD\uFFFD\\x000b=\\x0005\\x001a\uFFFDq\uFFFDR\uFFFD\uFFFDJ\nU\\x0017y\\x0019yIS\uFFFD\uFFFDh\uFFFD\\x0011\uFFFD(\uFFFD\uFFFD\uFFFD\uFFFD\\x001d\uFFFD\t\uFFFD|\uFFFDR'\uFFFD=\uFFFD\"F\\\uFFFD\uFFFDo]0\\x0004\uFFFDyEu" + "evidence": "2FUPDVXIIoMNHjpu2JjjSd82Na1pSGp312xGJNNxo5FDqJ35AMk31jIbQCik5SIAwh5jgRV7f14X", + "otherinfo": "\uFFFDU\\x000f\rU\uFFFD\"\uFFFD\r\\x001e:n\u0618\uFFFDI\uFFFD65\uFFFDiHjw\uFFFDlF$\uFFFDq\uFFFD\uFFFDC\uFFFD\uFFFD\uFFFD\\x0000\uFFFD7\uFFFD2\\x001b@(\uFFFD\uFFFD\"\\x0000\uFFFD\\x001ec\uFFFD\\x0015{^\\x0017" }, { "uri": "https://deces.matchid.io/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js", "method": "GET", "param": "", "attack": "", - "evidence": "2F9TcHtmECgUwBqqyJm07QicD6R5lJ35VFy2uvqq90mrzXmjUaQgi0FbvwKrhabQsM3K", - "otherinfo": "\uFFFD_Sp{f\\x0010(\\x0014\uFFFD\\x001a\uFFFD\u0219\uFFFD\uFFFD\\x0008\uFFFD\\x000f\uFFFDy\uFFFD\uFFFD\uFFFDT\\\uFFFD\uFFFD\uFFFD\uFFFD\uFFFDI\uFFFD\uFFFDy\uFFFDQ\uFFFD \uFFFDA[\uFFFD\\x0002\uFFFD\uFFFD\uFFFD\u0430\uFFFD\uFFFD" + "evidence": "2Bcgy92HmKl09fev7o8dMqU1ecO4WleDu2e", + "otherinfo": "\uFFFD\\x0017 \uFFFD\u0747\uFFFD\uFFFDt\uFFFD\uFFFD\uFFFD\uFFFD\\x001d2\uFFFD5y\u00F8ZW\uFFFD\uFFFDg" }, { "uri": "https://deces.matchid.io/css/global.css", "method": "GET", "param": "", "attack": "", - "evidence": "BJf5QdJwusNdo6kBFRI3Q0XCjvG9XHaMTo3P7E8iV9eT9GP2XLkwvO", - "otherinfo": "\\x0004\uFFFD\uFFFDA\uFFFDp\uFFFD\uFFFD]\uFFFD\uFFFD\\x0001\\x0015\\x00127CE\u008E\uFFFD\\v\uFFFDN\uFFFD\uFFFD\uFFFDO\"W\u05D3\uFFFDc\uFFFD\\\uFFFD0\uFFFD" + "evidence": "2BdtKFH5zxAjqRiUUQPxwaWVxHbAGqzGC6ZKz7m0BmyNoGNg13e", + "otherinfo": "\uFFFD\\x0017m(Q\uFFFD\uFFFD\\x0010#\uFFFD\\x0018\uFFFDQ\\x0003\uFFFD\uFFFD\uFFFD\uFFFD\uFFFDv\uFFFD\\x001a\uFFFD\uFFFD\\x000b\uFFFDJ\u03F9\uFFFD\\x0006l\uFFFD\uFFFDc`\uFFFDw" }, { "uri": "https://deces.matchid.io/css/matchid.min.css", "method": "GET", "param": "", "attack": "", - "evidence": "2BBwby0ZrZDCYGeUMC0RrXRPy3bqGQbNf7pz", - "otherinfo": "\uFFFD\\x0010po-\\x0019\uFFFD\uFFFD\uFFFD`g\uFFFD0-\\x0011\uFFFDtO\uFFFDv\uFFFD\\x0019\\x0006\uFFFD\uFFFDs" + "evidence": "2FxttF2cQNYegDPsYWEdXn9vwDbbhcwCAYYhzkgX", + "otherinfo": "\uFFFD\\m\uFFFD]\uFFFD@\uFFFD\\x001e\uFFFD3\uFFFDaa\\x001d^o\uFFFD6\u06C5\uFFFD\\x0002\\x0001\uFFFD!\uFFFDH\\x0017" }, { "uri": "https://deces.matchid.io/favicon-apple.png", "method": "GET", "param": "", "attack": "", - "evidence": "2FC0JShVLXYqm8Qi8Unm5lkMmD4eUhC2x73raI8JJrZJ", - "otherinfo": "\uFFFDP\uFFFD%(U-v*\uFFFD\uFFFD\"\uFFFDI\uFFFD\uFFFDY\\x000c\uFFFD>\\x001eR\\x0010\uFFFD\u01FD\uFFFDh\uFFFD\t&\uFFFDI" + "evidence": "2FuqiBO0NV5V9CqImmvq2ukVWPea5dnO1zwbf2lQFB4f2eOZfJg1zjwoWYTvbs1Ubxu", + "otherinfo": "\uFFFD[\uFFFD\uFFFD\\x0013\uFFFD5^U\uFFFD*\uFFFD\uFFFDk\uFFFD\uFFFD\uFFFD\\x0015X\uFFFD\uFFFD\uFFFD\uFFFD\uFFFD\uFFFD<\\x001biP\\x0014\\x001e\\x001f\uFFFD\uFFFD|\uFFFD5\uFFFD<(Y\uFFFD\uFFFDn\uFFFDTo\\x001b" }, { "uri": "https://deces.matchid.io/favicon.svg", "method": "GET", "param": "", "attack": "", - "evidence": "2B9T4ZzohszDpFbgZR8s1VNrwjvyDWY1", - "otherinfo": "\uFFFD\\x001fS\uFFFD\uFFFD\uFFFD\u00E4V\uFFFDe\\x001f,\uFFFDSk\uFFFD;\uFFFD\rf5" + "evidence": "2BHw375DOaU47cUgIhh2sf1kQOSq87TSWZJtUOrYSvcTo4vSuH", + "otherinfo": "\uFFFD\\x0011\uFFFD\u07FEC9\uFFFD8\uFFFD\uFFFD \"\\x0018v\uFFFD\uFFFDd@\uFFFD\uFFFD\uFFFDY\uFFFDmP\uFFFD\uFFFDJ\uFFFD\\x0013\uFFFD\uFFFD\u04B8" }, { "uri": "https://deces.matchid.io/js/matchid.min.js", "method": "GET", "param": "", "attack": "", - "evidence": "2BILW4FolkJMWdqD6iqXuIOTnWUcU77HTZSh1sxOkU0W", - "otherinfo": "\uFFFD\\x0012\\x000b[\uFFFDh\uFFFDBLY\u0683\uFFFD*\uFFFD\uFFFD\uFFFD\uFFFD\uFFFDe\\x001cS\uFFFD\uFFFDM\uFFFD\uFFFD\uFFFD\uFFFDN\uFFFDM\\x0016" - }, - { - "uri": "https://deces.matchid.io/manifest.json", - "method": "GET", - "param": "", - "attack": "", - "evidence": "mJWTywfi26twQMcdMdYdJvapVLebgY", - "otherinfo": "\uFFFD\uFFFD\uFFFD\uFFFD\\x0007\uFFFD\u06EBp@\uFFFD\\x001d1\uFFFD\\x001d&\uFFFD\uFFFDT\uFFFD\uFFFD\uFFFD" + "evidence": "ZwruYTh5Ek5WUbepBXaPS4Drmeej3FIIgglKBn4vloWT1DyujXZuAnj", + "otherinfo": "g\n\uFFFDa8y\\x0012NVQ\uFFFD\uFFFD\\x0005v\uFFFDK\uFFFD\uFFFD\uFFFD\uFFFDR\\x0008\uFFFD\tJ\\x0006~/\uFFFD\uFFFD\uFFFD\uFFFD<\uFFFD\uFFFDvn\\x0002x" }, { "uri": "https://deces.matchid.io/sitemap.xml", "method": "GET", "param": "", "attack": "", - "evidence": "2Bg7Gy1g1BFhPMolG0OgC9Y0kSZzpeBH6bJQg5L", - "otherinfo": "\uFFFD\\x0018;\\x001b-`\uFFFD\\x0011a<\uFFFD%\\x001bC\uFFFD\\x000b\uFFFD4\uFFFD&s\uFFFD\uFFFDG\uFFFDP\uFFFD\uFFFD" + "evidence": "15T0wU7n2toEymJ46TJc4pPGRYwxcCQRhXUGtbAUG24jWau0NhmFykhJkOWCJ2qboxZwdEWk9UytGlZbFbgY", + "otherinfo": "\u05D4\uFFFD\uFFFDN\uFFFD\uFFFD\uFFFD\\x0004\uFFFDbx\uFFFD2\\\uFFFD\uFFFDE\uFFFD1p$\\x0011\uFFFDu\\x0006\uFFFD\uFFFD\\x0014\\x001bn#Y\uFFFD\uFFFD6\\x0019\uFFFD\uFFFDHI\uFFFD\uFFFD'j\uFFFD\uFFFD\\x0016ptE\uFFFD\uFFFDL\uFFFD\\x001aV[\\x0015\uFFFD\\x0018" } ], - "count": "12", + "count": "10", "solution": "

Manually confirm that the Base64 data does not leak sensitive information, and that the data cannot be aggregated/used to exploit other vulnerabilities.

", - "otherinfo": "

\uFFFD\\x0015\\x0012F\uFFFD\\x00180\uFFFD\uFFFD\uFFFD4\\x000b\uFFFDU\u0526b^bV\u0395\uFFFD

", + "otherinfo": "

\uFFFD\uFFFD\\x000f\uFFFD\uFFFD\uFFFD\uFFFD\uFFFD\uFFFDGP\uFFFD]\u0752\uFFFDID\uFFFD\\x00112\u0653\uFFFD

", "reference": "

https://projects.webappsec.org/w/page/13246936/Information%20Leakage

", "cweid": "200", "wascid": "13", - "sourceid": "1" + "sourceid": "16" }, { "pluginid": "10027", @@ -469,7 +421,7 @@ "reference": "", "cweid": "200", "wascid": "13", - "sourceid": "23" + "sourceid": "21" }, { "pluginid": "10109", @@ -486,7 +438,7 @@ "method": "GET", "param": "", "attack": "", - "evidence": "", + "evidence": "", "otherinfo": "No links have been found while there are scripts, which is an indication that this is a modern web application." }, { @@ -494,7 +446,7 @@ "method": "GET", "param": "", "attack": "", - "evidence": "", + "evidence": "", "otherinfo": "No links have been found while there are scripts, which is an indication that this is a modern web application." }, { @@ -502,7 +454,7 @@ "method": "GET", "param": "", "attack": "", - "evidence": "", + "evidence": "", "otherinfo": "No links have been found while there are scripts, which is an indication that this is a modern web application." }, { @@ -510,7 +462,7 @@ "method": "GET", "param": "", "attack": "", - "evidence": "", + "evidence": "", "otherinfo": "No links have been found while there are scripts, which is an indication that this is a modern web application." } ], @@ -520,7 +472,7 @@ "reference": "", "cweid": "-1", "wascid": "-1", - "sourceid": "8" + "sourceid": "1" }, { "pluginid": "10015", @@ -556,6 +508,14 @@ "evidence": "", "otherinfo": "" }, + { + "uri": "https://deces.matchid.io/robots.txt", + "method": "GET", + "param": "cache-control", + "attack": "", + "evidence": "max-age=86400", + "otherinfo": "" + }, { "uri": "https://deces.matchid.io/sitemap.xml", "method": "GET", @@ -565,7 +525,7 @@ "otherinfo": "" } ], - "count": "4", + "count": "5", "solution": "

For secure content, ensure the cache-control HTTP header is set with \"no-cache, no-store, must-revalidate\". If an asset should be cached consider setting the directives \"public, max-age, immutable\".

", "otherinfo": "", "reference": "

https://cheatsheetseries.owasp.org/cheatsheets/Session_Management_Cheat_Sheet.html#web-content-caching

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control

https://grayduck.mn/2021/09/13/cache-control-recommendations/

", @@ -588,65 +548,17 @@ "method": "GET", "param": "", "attack": "", - "evidence": "Age: 1321", - "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." - }, - { - "uri": "https://deces.matchid.io/css/global.css", - "method": "GET", - "param": "", - "attack": "", - "evidence": "Age: 1322", - "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." - }, - { - "uri": "https://deces.matchid.io/css/matchid.min.css", - "method": "GET", - "param": "", - "attack": "", - "evidence": "Age: 139", - "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." - }, - { - "uri": "https://deces.matchid.io/favicon-apple.png", - "method": "GET", - "param": "", - "attack": "", - "evidence": "Age: 1324", - "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." - }, - { - "uri": "https://deces.matchid.io/favicon.svg", - "method": "GET", - "param": "", - "attack": "", - "evidence": "Age: 1323", - "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." - }, - { - "uri": "https://deces.matchid.io/js/matchid.min.js", - "method": "GET", - "param": "", - "attack": "", - "evidence": "Age: 139", - "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." - }, - { - "uri": "https://deces.matchid.io/robots.txt", - "method": "GET", - "param": "", - "attack": "", - "evidence": "Age: 140", + "evidence": "Age: 1113", "otherinfo": "The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use." } ], - "count": "7", + "count": "1", "solution": "

Validate that the response does not contain sensitive, personal or user-specific information. If it does, consider the use of the following HTTP response headers, to limit, or prevent the content being stored and retrieved from the cache by another user:

Cache-Control: no-cache, no-store, must-revalidate, private

Pragma: no-cache

Expires: 0

This configuration directs both HTTP 1.0 and HTTP 1.1 compliant caching servers to not store the response, and to not retrieve the response (without validation) from the cache, in response to a similar request.

", "otherinfo": "

The presence of the 'Age' header indicates that that a HTTP/1.1 compliant caching server is in use.

", "reference": "

https://tools.ietf.org/html/rfc7234

https://tools.ietf.org/html/rfc7231

https://www.rfc-editor.org/rfc/rfc9110.html

", "cweid": "-1", "wascid": "-1", - "sourceid": "30" + "sourceid": "18" }, { "pluginid": "90005", @@ -667,7 +579,7 @@ "otherinfo": "" }, { - "uri": "https://deces.matchid.io/favicon.svg", + "uri": "https://deces.matchid.io/build/module/bundle.css", "method": "GET", "param": "Sec-Fetch-Dest", "attack": "", @@ -710,7 +622,7 @@ "otherinfo": "" }, { - "uri": "https://deces.matchid.io/favicon.svg", + "uri": "https://deces.matchid.io/build/module/bundle.css", "method": "GET", "param": "Sec-Fetch-Mode", "attack": "", @@ -753,7 +665,7 @@ "otherinfo": "" }, { - "uri": "https://deces.matchid.io/favicon.svg", + "uri": "https://deces.matchid.io/build/module/bundle.css", "method": "GET", "param": "Sec-Fetch-Site", "attack": "", @@ -796,7 +708,7 @@ "otherinfo": "" }, { - "uri": "https://deces.matchid.io/favicon.svg", + "uri": "https://deces.matchid.io/build/module/bundle.css", "method": "GET", "param": "Sec-Fetch-User", "attack": "",