- ID scansione:
- a6f5efc4-a409-42a8-a122-514e08e55063Fatto
- URL inviato:
- https://www.eset.com/Reindirizzato
- Report terminato:
Rischi · 0 trovati
Copy linkPratiche che possono comportare rischi per la sicurezza
Intestazioni di sicurezza · 7 trovate
Copy linkIntestazioni di risposta HTTP che possono rafforzare la sicurezza di un'applicazione Web
Ulteriori informazioni...| Nome | Valore | Supporto | Info |
|---|---|---|---|
| Strict-Transport-Security | max-age=15724800 | Buono | Dichiara che un sito Web è accessibile solo tramite una connessione sicura (HTTPS). Fai clic per saperne di più... |
| X-Frame-Options | SAMEORIGIN | Buono | Indica se a un browser deve essere consentito di eseguire il rendering di una pagina in un <frame>, <iframe>, <embed> o <object>. Fai clic per saperne di più... |
| X-Content-Type-Options | nosniff | Buono | Indica che i tipi MIME pubblicizzati nelle intestazioni Content-Type devono essere seguiti e non modificati. Fai clic per saperne di più... |
| Content-Security-Policy | default-src 'self' https://*.extole.io; connect-src 'self' http://ad.doubleclick.net https://*.analytics.google.com https://*.api.userway.org https://*.clarity.ms https://*.clickagy.com https://*.demdex.net https://*.eset.com https://*.events.ubembed.com https://*.extole.io https://*.googlesyndication.com https://*.hotjar.com https://*.hotjar.io https://*.optimonk.com https://*.tawk.to https://*.tt.omtrdc.net https://*.zoominfo.com https://acsbapp.com https://ads.reddit.com https://adservice.google.com https://analytics.google.com https://analytics.tiktok.com https://analytics.twitter.com https://aorta.clickagy.com https://api.cloudsponge.com https://api.company-target.com https://api.userway.org https://bat.bing.com https://bat.bing.net https://c.go-mpulse.net https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.linkedin.oribi.io https://cdn.userway.org https://cdn1.esetstatic.com https://collect.cloudsponge.com https://conversions-config.reddit.com https://cookies-data.onetrust.io https://ct.pinterest.com https://ep.smct.co https://eset.tt.omtrdc.net https://fapi.eset.cz https://front.optimonk.com https://geolocation.onetrust.com https://googleads.g.doubleclick.net https://ipb.smct.co https://ipb.smct.io https://js.smct.co https://js.smct.io https://js.zi-scripts.com https://maps.googleapis.com https://mapsresources-pa.googleapis.com https://pixel-config.reddit.com https://privacyportal.onetrust.com https://process.acsbapp.com https://px.ads.linkedin.com https://region1.google-analytics.com https://replay.uxtweak.com https://s.yimg.com https://scout.salesloft.com https://script.crazyegg.com https://smct.co https://stats.g.doubleclick.net https://t.co https://tag-logger.demandbase.com https://tracker.clickguard.com https://web1.acsbapp.com https://www.facebook.com https://www.g2.com https://www.google-analytics.com https://www.google.by https://www.google.ch https://www.google.co.uk https://www.google.co.uz https://www.google.com https://www.google.com.tj https://www.google.com.tr https://www.google.es https://www.google.ie https://www.google.kg https://www.google.kz https://www.google.lt https://www.google.lv https://www.google.pl https://www.google.ru https://www.googletagmanager.com https://www.mczbf.com https://www.redditstatic.com https://www.redditstatic.com wss://*.hotjar.com wss://*.tawk.to; font-src 'self' data: https://*.extole.io https://*.gstatic.com https://acsbapp.com https://api.cloudsponge.com https://cdn-content.optimonk.com https://cdn-custom.optimonk.com https://cdn.acsbapp.com https://cdn.userway.org https://cf.xtlo.net https://embed.tawk.to https://fonts.smct.co https://fonts.smct.io https://origin.xtlo.net https://script.hotjar.com https://www.eset.com; form-action 'self' https://enjoy.eset.com https://int.forms.eset.com https://notify.eset.com https://protects.eset.com https://s1069307879.t.eloqua.com https://secure.eset-la.com https://store.eset.com https://support.eset.com https://webto.salesforce.com https://www.facebook.com; frame-ancestors 'self' https://www.eset.com; frame-src 'self' https://*.fls.doubleclick.net https://4144895.extforms.netsuite.com https://8117415.fls.doubleclick.net https://bid.g.doubleclick.net https://buy.eset.com https://cdn.userway.org https://cj.dotomi.com https://download.eset.com https://embed.tawk.to https://eset.demdex.net https://hemsync.clickagy.com https://int.form.eset.com https://js.smct.io https://ls.smct.co https://protectdemo.eset.com https://protects.eset.com https://s.company-target.com https://sgtm.eset.com https://smct.co https://support.eset.com https://td.doubleclick.net https://tpc.googlesyndication.com https://tr.snapchat.com https://unity.survey-solutions.cloud https://vars.hotjar.com https://widget.trustpilot.com https://www.brighttalk.com https://www.buzzsprout.com https://www.emjcd.com https://www.facebook.com https://www.google.com https://www.googletagmanager.com https://www.paperturn-view.com https://www.riddle.com https://www.youtube-nocookie.com https://www.youtube.com; img-src 'self' data: http://ad.doubleclick.net https://*.adform.net https://*.ads.linkedin.com https://*.extole.io https://*.gstatic.com https://*.krxd.net https://*.tawk.to https://*.yahoo.co.jp https://aa.agkn.com https://ad.doubleclick.net https://ade.googlesyndication.com https://adservice.google.at https://adservice.google.ch https://adservice.google.co.jp https://adservice.google.com https://adservice.google.de https://alb.reddit.com https://analytics.google.com https://analytics.twitter.com https://aorta.clickagy.com https://api.cloudsponge.com https://assets.capterra.com https://bat.bing.com https://bat.bing.net https://c.bing.com https://c.clarity.ms https://captcha.eset.com https://cdn.acsbapp.com https://cdn.cookielaw.org https://cdn.esetstatic.com https://cdn.jsdelivr.net https://cdn.smct.co https://cdn.smct.io https://cdn.userway.org https://cdn1.esetstatic.com https://cf.xtlo.net https://cj.dotomi.com https://cm.everesttech.net https://cm.g.doubleclick.net https://connect.facebook.net https://dc.ads.linkedin.com https://dpm.demdex.net https://dsum-sec.casalemedia.com https://editor-upload-cdn.optimonk.com https://events.smct.co https://fapi.eset.cz https://googleads.g.doubleclick.net https://home.eset.com https://i.ytimg.com https://id.rlcdn.com https://idsync.rlcdn.com https://images.g2crowd.com https://insight.adsrvr.org https://maps.googleapis.com https://match.adsrvr.org https://origin.xtlo.net https://pagead2.googlesyndication.com https://pixel-sync.sitescout.com https://pixel.rubiconproject.com https://proeesweufesto01.blob.core.windows.net https://proeeswusfesto01.blob.core.windows.net https://pubads.g.doubleclick.net https://px.ads.linkedin.com https://px.steelhousemedia.com https://q.quora.com https://region1.analytics.google.com https://region1.google-analytics.com https://s786665.t.eloqua.com https://script.hotjar.com https://sgtm.eset.com https://ssitecat.eset.com https://ssl.google-analytics.com https://static.hotjar.com https://stats.g.doubleclick.net https://t.co https://tags.bluekai.com https://tags.w55c.net https://tawk.link https://tribl.io https://trk.crozdesk.com https://us-u.openx.net https://usermatch.krxd.net https://web1.acsbapp.com https://www.emjcd.com https://www.facebook.com https://www.google-analytics.com https://www.google.ad https://www.google.ae https://www.google.al https://www.google.am https://www.google.at https://www.google.az https://www.google.ba https://www.google.be https://www.google.bf https://www.google.bg https://www.google.bi https://www.google.bj https://www.google.bs https://www.google.bt https://www.google.by https://www.google.ca https://www.google.cd https://www.google.cf https://www.google.cg https://www.google.ch https://www.google.ci https://www.google.cl https://www.google.cm https://www.google.cn https://www.google.co.ao https://www.google.co.bw https://www.google.co.cr https://www.google.co.id https://www.google.co.il https://www.google.co.in https://www.google.co.jp https://www.google.co.ke https://www.google.co.kr https://www.google.co.ls https://www.google.co.ma https://www.google.co.mz https://www.google.co.nz https://www.google.co.th https://www.google.co.tz https://www.google.co.ug https://www.google.co.uk https://www.google.co.uz https://www.google.co.ve https://www.google.co.vi https://www.google.co.za https://www.google.co.zm https://www.google.co.zw https://www.google.com https://www.google.com.af https://www.google.com.ag https://www.google.com.ar https://www.google.com.au https://www.google.com.bd https://www.google.com.bh https://www.google.com.bn https://www.google.com.bo https://www.google.com.br https://www.google.com.bz https://www.google.com.co https://www.google.com.cu https://www.google.com.cy https://www.google.com.do https://www.google.com.ec https://www.google.com.eg https://www.google.com.et https://www.google.com.fj https://www.google.com.gh https://www.google.com.gi https://www.google.com.gt https://www.google.com.hk https://www.google.com.jm https://www.google.com.kh https://www.google.com.kw https://www.google.com.lb https://www.google.com.ly https://www.google.com.mm https://www.google.com.mt https://www.google.com.mx https://www.google.com.my https://www.google.com.na https://www.google.com.ng https://www.google.com.ni https://www.google.com.np https://www.google.com.om https://www.google.com.pa https://www.google.com.pe https://www.google.com.pg https://www.google.com.ph https://www.google.com.pk https://www.google.com.pr https://www.google.com.py https://www.google.com.qa https://www.google.com.sa https://www.google.com.sb https://www.google.com.sg https://www.google.com.sl https://www.google.com.sv https://www.google.com.tj https://www.google.com.tr https://www.google.com.tw https://www.google.com.ua https://www.google.com.uy https://www.google.com.vc https://www.google.com.vn https://www.google.cv https://www.google.cz https://www.google.de https://www.google.dj https://www.google.dk https://www.google.dm https://www.google.dz https://www.google.ee https://www.google.es https://www.google.fi https://www.google.fr https://www.google.ga https://www.google.ge https://www.google.gg https://www.google.gl https://www.google.gm https://www.google.gr https://www.google.gy https://www.google.hn https://www.google.hr https://www.google.ht https://www.google.hu https://www.google.ie https://www.google.im https://www.google.iq https://www.google.is https://www.google.it https://www.google.je https://www.google.jo https://www.google.kg https://www.google.ki https://www.google.kz https://www.google.la https://www.google.li https://www.google.lk https://www.google.lt https://www.google.lu https://www.google.lv https://www.google.md https://www.google.me https://www.google.mg https://www.google.mk https://www.google.ml https://www.google.mn https://www.google.mu https://www.google.mv https://www.google.mw https://www.google.ne https://www.google.nl https://www.google.no https://www.google.nr https://www.google.pl https://www.google.ps https://www.google.pt https://www.google.ro https://www.google.rs https://www.google.ru https://www.google.rw https://www.google.sc https://www.google.se https://www.google.si https://www.google.sk https://www.google.sm https://www.google.sn https://www.google.so https://www.google.sr https://www.google.td https://www.google.tg https://www.google.tl https://www.google.tm https://www.google.tn https://www.google.tt https://www.google.vg https://www.google.vu https://www.googleadservices.com https://www.googletagmanager.com https://www.hotjar.com https://www.linkedin.com https://www.mczbf.com; manifest-src 'self'; media-src 'self' https://api.userway.org https://api.userway.org https://api.userway.org https://cdn.userway.org https://cdn.userway.org https://embed.tawk.to https://web1.acsbapp.com; object-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.cookielaw.org https://*.extole.io https://*.js.ubembed.com https://*.mountain.com https://*.optimonk.com https://*.replay.uxtweak.com https://*.salesforceliveagent.com https://*.ubembed.com https://*.xtlo.net https://a.quora.com https://acsbap.com https://acsbapp.com https://analytics.tiktok.com https://api.cloudsponge.com https://assets.esetstatic.com https://bat.bing.com https://cdn.esetstatic.com https://cdn.jsdelivr.net https://cdn.linkedin.oribi.io https://cdn.userway.org https://cdn1.esetstatic.com https://cdnjs.cloudflare.com https://connect.facebook.net https://ct.capterra.com https://d.la1-c2-cdg.salesforceliveagent.com https://d3pkntwtp2ukl5.cloudfront.net https://embed.playbuzz.com https://embed.tawk.to https://embed.typeform.com https://fapi.eset.cz https://gleam.io https://googleads.g.doubleclick.net https://img.en25.com https://img06.en25.com https://invitejs.trustpilot.com https://js.gleam.io https://js.smct.co https://js.smct.io https://js.zi-scripts.com https://maps.googleapis.com https://pagead2.googlesyndication.com https://platform.twitter.com https://refer.eset.com https://s786665.t.eloqua.com https://scout-cdn.salesloft.com https://script.hotjar.com https://sgtm.eset.com https://smct.co https://snap.licdn.com https://ssl.google-analytics.com https://static.ads-twitter.com https://static.hotjar.com https://store.eset.com https://tag.demandbase.com https://tags.clickagy.com https://tpc.googlesyndication.com https://tribl.io https://trk.crozdesk.com https://visitor.technologyadvice.com https://widget.trustpilot.com https://ws.zoominfo.com https://www.brighttalk.com https://www.buzzsprout.com https://www.clarity.ms https://www.emjcd.com https://www.google-analytics.com https://www.google.ae https://www.google.am https://www.google.at https://www.google.be https://www.google.bg https://www.google.bs https://www.google.by https://www.google.ca https://www.google.cg https://www.google.ch https://www.google.ci https://www.google.cl https://www.google.cm https://www.google.co.id https://www.google.co.il https://www.google.co.in https://www.google.co.jp https://www.google.co.ke https://www.google.co.ma https://www.google.co.nz https://www.google.co.th https://www.google.co.uk https://www.google.co.uz https://www.google.co.ve https://www.google.co.za https://www.google.co.zw https://www.google.com https://www.google.cz https://www.google.de https://www.google.dj https://www.google.dz https://www.google.ee https://www.google.es https://www.google.fi https://www.google.fr https://www.google.ge https://www.google.gr https://www.google.hr https://www.google.hu https://www.google.ie https://www.google.kg https://www.google.kz https://www.google.lk https://www.google.lt https://www.google.md https://www.google.me https://www.google.mk https://www.google.nl https://www.google.pl https://www.google.ps https://www.google.pt https://www.google.ro https://www.google.ru https://www.google.se https://www.google.si https://www.google.sk https://www.google.tn https://www.googleadservices.com https://www.googleoptimize.com https://www.googletagmanager.com https://www.mczbf.com https://www.paperturn-view.com https://www.redditstatic.com https://www.riddle.com https://www.youtube.com; style-src 'self' 'unsafe-inline' https://*.extole.io https://*.tawk.to https://api.cloudsponge.com https://cdn-asset.optimonk.com https://cdn-content.optimonk.com https://cdn.jsdelivr.net https://cdn.userway.org https://fonts.googleapis.com https://fonts.smct.co https://fonts.smct.io https://script.hotjar.com https://static.hotjar.com; worker-src 'self'; report-uri https://www-eset-com.api.cspconsole.com/v1/reports; report-to csp-endpoint; | Buono | Controlla le risorse che l'agente utente può caricare per una determinata pagina. Fai clic per saperne di più... |
| Referrer-Policy | no-referrer-when-downgrade | Buono | Controlla la quantità di informazioni sul referrer che devono essere incluse nelle richieste. Fai clic per saperne di più... |
| Clear-Site-Data | — | Buono | Controlla i dati memorizzati da un browser client per le loro origini. Fai clic per saperne di più... |
| X-Permitted-Cross-Domain-Policies | — | Buono | Controlla se un client Web come Adobe Flash Player o Adobe Acrobat dispone dell'autorizzazione per gestire i dati tra domini. Fai clic per saperne di più... |
| Permissions-Policy | — | Nuovo | Consenti e nega l'uso delle funzionalità del browser in un documento o iframe. Fai clic per saperne di più... |
| Cross-Origin-Embedder-Policy | — | Nuovo | Configura l'incorporamento di risorse multiorigine nel documento. Fai clic per saperne di più... |
| Cross-Origin-Opener-Policy | — | Nuovo | Assicurati che un documento di livello superiore non condivida un gruppo di contesti di navigazione con documenti di più origini. Fai clic per saperne di più... |
| Cross-Origin-Resource-Policy | — | Nuovo | Richiedere che il browser blocchi le richieste multiorigine/tra siti no-cor alla risorsa specificata. Fai clic per saperne di più... |
| X-XSS-Protection | 1; mode=block; report=https://eset.report-uri.com/r/d/xss/enforce | Obsoleto | Obsoleto. Impedisce il caricamento delle pagine quando rilevano attacchi XSS (cross-site scripting) riflessi. Fai clic per saperne di più... |
| Feature-Policy | accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none'; ambient-light-sensor 'none'; autoplay 'none'; encrypted-media 'none'; fullscreen 'self' https://www.youtube.com; midi 'none'; picture-in-picture 'none'; speaker 'none'; vr 'none' | Obsoleto | Obsoleto. Sostituito dall'intestazione Permissions-Policy. Fai clic per saperne di più... |
| Expect-CT | — | Obsoleto | Obsoleto. Accetta la segnalazione e/o l'applicazione dei requisiti di trasparenza dei certificati. Fai clic per saperne di più... |
| Public-Key-Pins | — | Obsoleto | Obsoleto. Consente ai siti Web HTTPS di resistere alla rappresentazione da parte di autori di attacchi che utilizzano certificati emessi erroneamente o altrimenti fraudolenti. Fai clic per saperne di più... |
Violazioni della sicurezza · 0 trovate
Copy linkRichieste o risorse che violano le politiche di sicurezza
Certificati · 13 trovati
Copy linkI certificati SSL/TLS consentono ai siti Web di crittografare le transazioni tra il client e il server e fornire la verifica dell'identità del server
| Oggetto | Data di emissione | Data di scadenza |
|---|---|---|
| www.eset.com | 13 gen 2025, 00:00:00 | 18 gen 2026, 23:59:59 |
| *.esetstatic.com | 30 set 2024, 00:00:00 | 3 ott 2025, 23:59:59 |
| api.eset.com | 26 feb 2024, 00:00:00 | 25 feb 2025, 23:59:59 |
| jsdelivr.net | 30 lug 2024, 15:36:05 | 31 ago 2025, 15:36:04 |
| *.google-analytics.com | 9 dic 2024, 08:36:18 | 3 mar 2025, 08:36:17 |
| api.buy.eset.com | 3 apr 2024, 00:00:00 | 2 apr 2025, 23:59:59 |
| tawk.to | 19 nov 2024, 00:49:22 | 17 feb 2025, 00:49:21 |
| 1667503734.rsc.cdn77.org | 4 dic 2024, 04:53:02 | 4 mar 2025, 04:53:01 |
| *.js.ubembed.com | 5 dic 2024, 17:34:09 | 5 mar 2025, 17:34:08 |
| sgtm.eset.com | 23 lug 2024, 00:00:00 | 22 lug 2025, 23:59:59 |