Executive Summary
14
/ 100
LOW EXPOSURE
- SSL Issues: 0/20
- Missing Headers: 6/20
- DNS Issues: 3/15
- Admin Exposure: 3/15
Scope & Methodology
Assessment method: passive, non-destructive reconnaissance only. No brute force, payload injection, or exploitation techniques were used.
- DNS, certificate transparency, archive intelligence, and metadata inspection
- Homepage-depth surface extraction and header posture review
- Historical URL triage and weighted exposure scoring
Subdomains
| Name | Status | IP | CDN |
|---|---|---|---|
| media.reservexbd.com | UNRESOLVABLE | 172.67.201.57 | - |
| reservexbd.com | LIVE | 172.66.0.96 | - |
DNS Analysis
Records
| Type | Values |
|---|---|
| A | 172.66.0.96, 162.159.140.98 |
| AAAA | 2a06:98c1:58::60, 2606:4700:7::60 |
| MX | 49 route3.mx.cloudflare.net., 17 route2.mx.cloudflare.net., 15 route1.mx.cloudflare.net. |
| NS | brett.ns.cloudflare.com., daniella.ns.cloudflare.com. |
| TXT | "v=spf1 include:_spf.mx.cloudflare.net ~all", "brevo-code:7db6516139814abecc26915ba28f64e8" |
| CNAME |
Flags
- MEDIUM Potential origin IP exposure detected for CDN-protected infrastructure.
- LOW No DKIM hints discovered in queried TXT records.
SSL/TLS
Issuer: CN=WE1,O=Google Trust Services,C=US
Expiry: 2026-05-27T14:34:12+00:00 (68 days)
TLS Version: TLSv1.3
Wildcard: No
Risk Flags
Technology Stack
Django
Google Analytics
Cloudflare
Security Headers
| Header | Value |
|---|---|
| x-frame-options | DENY |
| strict-transport-security | max-age=31536000; includeSubDomains; preload |
| x-content-type-options | nosniff |
| referrer-policy | strict-origin-when-cross-origin |
| cross-origin-opener-policy | same-origin |
Findings
- HIGH Content-Security-Policy header is missing
- LOW permissions-policy header is missing
- LOW x-xss-protection header is missing
Attack Surface Map
Internal links: 13 | External links: 2
Forms: 1 | Scripts: 6
API-like routes: None detected
Admin paths: /login
Wayback Findings
| Historical URL | Risk |
|---|
Risk Summary
| ID | Category | Risk | Finding | Impact |
|---|---|---|---|---|
| HDR-001 | Security Headers | HIGH | Content-Security-Policy header is missing | 8 |
| HDR-101 | Security Headers | LOW | permissions-policy header is missing | 2 |
| HDR-102 | Security Headers | LOW | x-xss-protection header is missing | 2 |
| DNS-ORIGIN-001 | DNS | MEDIUM | Potential origin IP exposure detected for CDN-protected infrastructure. | 6 |
| DNS-DKIM-001 | DNS | LOW | No DKIM hints discovered in queried TXT records. | 2 |
Recommendations
- HDR-001 — Implement a strict CSP policy tailored to required assets.
- HDR-101 — Set a secure default for permissions-policy.
- HDR-102 — Set a secure default for x-xss-protection.
- DNS-ORIGIN-001 — Restrict origin access to CDN egress ranges only.
- DNS-DKIM-001 — Ensure DKIM selectors are configured for active mail domains.
Appendix
Raw Subdomains: 2
Raw DNS A Records: 172.66.0.96, 162.159.140.98
Historical Subdomains:
Non-Security Headers
| Header | Value |
|---|---|
| date | Fri, 20 Mar 2026 05:41:45 GMT |
| content-type | text/html; charset=utf-8 |
| transfer-encoding | chunked |
| connection | keep-alive |
| content-encoding | gzip |
| cache-control | public, max-age=60 |
| vary | Cookie, Accept-Encoding |
| set-cookie | __cf_bm=BO1i4m2zLyAFZ2.NOMC60oLt5ot1gSgiJ0iDKNjGRjo-1773985305-1.0.1.1-Z4yf65W3xA4t6HqoT3pBgQ0CunCj7F85wGt7DsJg4aWXp3vto5szFgqvuoD3mZp3heLeMr4_Kx.XBBvlXXFdS9aptW7WikjKpyjVNpm59Y0; path=/; expires=Fri, 20-Mar-26 06:11:45 GMT; domain=.reservexbd.com; HttpOnly; Secure; SameSite=None |
| x-do-app-origin | 37a6da98-45e3-482d-92da-55ce0066f105 |
| x-do-orig-status | 200 |
| cf-cache-status | MISS |
| server | cloudflare |
| cf-ray | 9df263ba4ef733d3-DAC |
| alt-svc | h3=":443"; ma=86400 |