Paramètres d'affichage

Choisissez un thème pour personnaliser l'apparence du site.

https://matrix.agent.finances.tchap.gouv.fr

0
Copie d'écran de https://matrix.agent.finances.tchap.gouv.fr

Nmap

Scan Summary :

A

severityservicevulnerability

info

https (port:443)
Consulter le rapport détaillé

Mozilla HTTP observatoryenviron 1 heure

Scan Summary :

D

ImpactDescriptionDocumentation

-25

Doc Content Security Policy. L'extension github.com/april/laboratory permet de générer la CSP pour votre application.

-20

Doc header Strict-Transport-Security (HSTS).

-20

Doc header X-Frame-Options.

-5

Doc header X-Content-Type-Options.

Rapport détaillé

SSL

Scan Summary :

A


Grade capped to A. HSTS is not offered


Expiration : 07/10/2024

Rapport détaillé

Scan OWASPenviron 1 heure

riskname

Medium (High)

Content Security Policy (CSP) Header Not Set

Low (High)

Strict-Transport-Security Header Not Set

Low (Medium)

Permissions Policy Header Not Set

Low (Medium)

X-Content-Type-Options Header Missing

Informational (High)

Sec-Fetch-Dest Header is Missing

Informational (High)

Sec-Fetch-Mode Header is Missing

Informational (High)

Sec-Fetch-Site Header is Missing

Informational (High)

Sec-Fetch-User Header is Missing

Informational (Medium)

Modern Web Application

Informational (Medium)

Storable and Cacheable Content

Informational (Low)

Information Disclosure - Suspicious Comments

Informational (Low)

Re-examine Cache-control Directives

Rapport détaillé

Nucleienviron 1 heure

SéveritéNameMatcher

info

CAA Recordcaa-fingerprint

info

DNS SaaS Service Detectiondns-saas-service-detection

info

HTTP Missing Security Headersstrict-transport-security

info

HTTP Missing Security Headersx-content-type-options

info

HTTP Missing Security Headersx-permitted-cross-domain-policies

info

HTTP Missing Security Headersclear-site-data

info

HTTP Missing Security Headerscross-origin-embedder-policy

info

HTTP Missing Security Headerscross-origin-opener-policy

info

HTTP Missing Security Headerscross-origin-resource-policy

info

HTTP Missing Security Headerscontent-security-policy

info

HTTP Missing Security Headerspermissions-policy

info

HTTP Missing Security Headersx-frame-options

info

HTTP Missing Security Headersreferrer-policy

info

WAF Detectionapachegeneric

info

Detect SSL Certificate Issuerssl-issuer

info

SSL DNS Namesssl-dns-names

info

TLS Version - Detecttls-version