Processing Domain Senderbase.org on 27/03/2019 06:50:26 pm

Processing DNS Records

Basic Checks

Here we check the basic functioning and security of your DNS

• Zone Queries 6 Record Types and 14 Records Found
• Zone Transfer Failed

Nameservers

Here we check the setup of your nameservers

• ns1-117.akam.net 193.108.91.117 Match
• asia3.akam.net 23.211.61.64 Match
• ns1-11.akam.net 193.108.91.11 Match
• ns1-90.akam.net 193.108.91.90 Match
• ns1-93.akam.net 193.108.91.93 Match
• use1.akam.net 72.246.46.64 Match
• ns1-73.akam.net 193.108.91.73 Match
• ns1-109.akam.net 193.108.91.109 Match

Processing TXT Records

SPF Record:

The SPF Record defines which IP addresses are permitted to send email on this domain's behalf

• v=spf1 ( The SPF Format Version Number)
• mx
• a:smtp2.ironport.com
• a:smtp.ironport.com
• a:a50.ironport.com
• a:c60-outbound.ironport.com
• ip4:184.94.240.112/28 ( The IPv4 Address of a permitted sender - make sure this scopes your outgoing mail server)
• ip4:204.15.82.0/24 ( The IPv4 Address of a permitted sender - make sure this scopes your outgoing mail server)
• ip4:216.154.195.32/27 ( The IPv4 Address of a permitted sender - make sure this scopes your outgoing mail server)
• ip4:173.37.147.224/27 ( The IPv4 Address of a permitted sender - make sure this scopes your outgoing mail server)
• ip4:72.163.7.160/27 ( The IPv4 Address of a permitted sender - make sure this scopes your outgoing mail server)
• ~all ( Permit other hosts but take note)

Processing MX (Mail Exchanger) Records

These Records determine the servers (mail servers) responsible for handling your incomming email. Each service is given a priority and they will be used in that order. If all the priorities are the same then they will be used in a round-robin fashion

• Priority 10 handled by host vmx.sco.cisco.com. [184.94.241.135] Valid
• Email Handled Third Party
• Port 25 (smtp) : Open

Processing CNAME (Alias) Records

These records are aliases making one hostname relate to another. These are often used to match hosts back to clusters or internal referencs that may change.

• Host: www.senderbase.org. www.senderbase.org.edgekey.net.

Processing A (IPv4 Address) Records

These records define the IP Addresse(s) of the servers responsible for hosting your webiste and other resouces on your domain. The www record is the most common one and will be used to identify your website address

• Host: senderbase.org. = IP: [95.101.128.18] Valid Reachable (13.011ms)
• Host: senderbase.org. = IP: [95.101.128.27] Valid Reachable (13.103ms)

Processing AAAA (IPv6 Address) Records

These records define the IP Addresse(s) of the servers responsible for hosting your webiste and other resouces on your domain

Processing Domain Public Records

• We have been unable to find the website IP from the zone
• Performed an additional out-of-zone lookup to find website host [104.103.201.126]

Domain Name WHOIS Information - Senderbase.org

• Domain Name: SENDERBASE.ORG
• Registry Domain ID: D92764553-LROR
• Registrar WHOIS Server: whois.enom.com
• Registrar URL: http://www.enom.com
• Updated Date: 2018-11-04T07:40:16Z
• Creation Date: 2002-12-03T03:26:33Z
• Registry Expiry Date: 2019-12-03T03:26:33Z
• Registrar Registration Expiration Date:
• Registrar: eNom, Inc.
• Registrar IANA ID: 48
• Registrar Abuse Contact Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
• Registrar Abuse Contact Phone: +1.4252982646
• Reseller:
• Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
• Registrant Organization: Cisco Technology, Inc.
• Registrant State/Province: CA
• Registrant Country: US
• Name Server: USE1.AKAM.NET
• Name Server: NS1-93.AKAM.NET
• Name Server: NS1-73.AKAM.NET
• Name Server: NS1-90.AKAM.NET
• Name Server: ASIA3.AKAM.NET
• Name Server: NS1-109.AKAM.NET
• Name Server: NS1-11.AKAM.NET
• Name Server: NS1-117.AKAM.NET
• DNSSEC: unsigned
• URL of the ICANN Whois Inaccuracy Complaint Form https://www.icann.org/wicf/)

Website Hosting WHOIS Information - 104.103.201.126

• Akamai Technologies, Inc. AKAMAI (NET-104-64-0-0-1) 104.64.0.0 - 104.127.255.255
• Akamai International, BV AIBV (NET-104-103-192-0-1) 104.103.192.0 - 104.103.207.255

Processing Website

Website Headers for www.Senderbase.org

We will obtain the headers from your website and parse them for validity



• Web Server is cloudflare
• Request Response HTTP/1.1 200 OK
• SSL is available and enabled
• Certificate Name /C=US/ST=California/L=San Jose/O=Cisco Systems/OU=Security Cloud Operation/CN=www.senderbase.org
Certificate Issued To
• Country US
• City California
• Locality San Jose
• Organisation Cisco Systems
• Certificate Scope www.senderbase.org
Certificate Issuer
• Country US
• Organisation DigiCert Inc
• Certificate Scope GeoTrust RSA CA 2018
Certificate Validity
• Valid From 180430000000Z
• Valid To 190430120000Z
Certificate Ciphers
• SN RSA-SHA256
• LN sha256WithRSAEncryption
Certificate Extensions
• Alternative Hostnames DNS:www.senderbase.org, DNS:senderbase.org, DNS:mailsc.spamcop.net, DNS:general.spamcop.net, DNS:charlie.senderbase.org, DNS:beta.senderbase.org, DNS:forum.spamcop.net, DNS:spamcop.net, DNS:alpha.senderbase.org, DNS:members.spamcop.net, DNS:www.spamcop.net
• Key Usage TLS Web Server Authentication, TLS Web Client Authentication
• There was a redirect to https://talosintelligence.com/
• Valid methods for a specified resource (Allow) Missing
• Control options for the current connection (Connection) Found : keep-alive
• Specifies Technology in use (X-Powered-By) Missing

Security Related

• modifies the algorithm used to populate the Referer header (Referrer-Policy) Found : strict-origin-when-cross-origin
• stops pages when they detect XSS (X-XSS-Protection) Missing
• Allow and Deny the use of browser features (Feature-Policy) Missing
• Platform for Privacy Preferences (P3P) Missing

Cross Origin Resource Sharing

• (Access-Control-Allow-Origin) Missing
• (Access-Control-Allow-Credentials) Missing
• (Access-Control-Expose-Headers) Missing
• (Access-Control-Max-Age) Missing
• (Access-Control-Allow-Methods) Missing
• (Access-Control-Allow-Headers) Missing

Content Headers

• The natural language or languages of the intended audience (Content-Language) Missing
• The form of encoding used (Transfer-Encoding) Missing
• The length of the response body (Content-Length) Missing
• The Media type of the body of the request (Content-Type) Found : text/html; charset=utf-8
• The date and time of generation (Date) Found : Wed, 27 Mar 2019 18:46:48 GMT
• An opportunity to raise a File Download dialogue box (Content-Disposition) Missing
• The type of encoding used on the data (Content-Encoding) Missing
• An alternate location for the returned data (Content-Location) Missing
• Where in a full body message this partial message belongs (Content-Range) Missing
• An identifier for a specific version of a resource (ETag) Missing
• how to match future request headers (Vary) Missing

Caching Control

• Tells caches whether they may cache this object (Cache-Control) Found : max-age=0, private, must-revalidate
• Gives the date/time after which the response is considered stale (Expires) Missing
• The last modified date for the requested object (Last-Modified) Missing
• Implementation-specific fields for caching (Pragma) Missing
• From an Intermediate cache (X-Cache-Action) Missing
• Intermediate Cache Hits count (X-Cache-Hits) Missing
• Intermediate Cache Age (X-Cache-Age) Missing
• Informs the client of proxies through which the response was sent (Via) Found : 1.1 vegur
• The Age this page has been cached in a proxy (Age) Missing

Strict Transport Security (HSTS) Policy

• A HSTS Policy for the client with scope (Strict-Transport-Security) Found : max-age=0; preload

Cookies and Fragments

• Cookie Data (Set-Cookie) Found : _talos_website_session=T1YraUFiZitiaDdMQUcxMnRPdFpqV3B6RTY3ZXRvamduY04wREVKMHM2UVdUL0szazBPYndOTXU4SFN2angxbzdDQ0dnSlRBak54M2JjUm5NUkREZXlIS1FTKzZGVUdpYkhESVpmVER4YTZoV21ERFJXaHIvQzh1SVJ4RENzNDlSRlVJazl5dGZ5OHk3SGpWb0JBNUNRPT0tLXg2S1E2WEI2L0o4WUQ5Y3VoNUVRVXc9PQ%3D%3D--4deeb6ea551dda40abe0d770ef54b569d46f91ef; path=/; HttpOnly

Robots.txt

• You have a robots.txt file and it appears to be valid
  

      User-Agent: *
      Allow: /
  
      Sitemap: https://www.talosintelligence.com/sitemap.xml
  

Processing Website Profile Data

Technology Profile Senderbase.org

We will check for fingerprints of common website technologies



• Failed to succesfully profile the website.

Meta Profile https://talosintelligence.com/

We will check the entire body for metadata



• viewport : width=device-width, initial-scale=1
• description : Talos comprises of leading-edge cyber threat intelligence team providing various network security solutions for unwanted intrusion from both known and emerging threats.
• keywords : cyber security threats, cyber security solutions, cyber threat intelligence, open source threat intelligence, small business and enterprise network security
• csrf-param : authenticity_token
• csrf-token : 1doYAM2OkyxifvVrNoE0ILYs+nsUtKkNFsX+cPS8Ezd1awJY1cggs4KWODArrIkJNdkaFNG5AYVyL/wZ+lZ1tw==

Processing Completed

The process is now completed and the results are shown above. Please take a moment to consider each test and its response. DNS, SMTP and HTTP are not simple protocols and it is way beyond the scope of this tool to suggest improvements, but you are welcome to request assistance via our Forum.