ID da verificação
0d1e1b08-d9db-4caa-b159-1273e5b65b54Concluído
URL enviado:
https://www.nccgroup.com/Redirecionado
Relatório concluído:

Cookies · 7 encontrados

Copy link

Cookies são pequenos arquivos de texto armazenados no dispositivo de um utilizador, frequentemente usados para lembrar as preferências do utilizador e proporcionar experiências personalizadas

NomeValorDomínioCaminhoExpira (UTC)SeguroApenas HTTP
ncc_langENwww.nccgroup.com/SimSim
visid_incap_2304533z31yUDhWQdKZo94RxzOb0wNoOGcAAAAAQUIPAAAAAAABnCs8z+xA/LyFO84q+p1B.nccgroup.com/SimSim
nlbi_2304533WpqYRWSn6X8RnomJAs5NTgAAAADhdlVQxYKa4qk2b4Wtl/nJ.nccgroup.com/SimSim
ncc_countryUSwww.nccgroup.com/SimSim
.AspNetCore.Antiforgery.cdV5uW_EjgcCfDJ8LD82gakNFZEnW5q21H6sm_NHhfuy0M30eHn3q_AAghxl7E5b-mk5nrak6DAY_0UKAy_9IUa1H4ed6MobF_0m_4D9sGjhOoW6ggqCM3pxdvRHcb9tlqcq1eXpOCZpAVn_ESCAY1GjefmF0h0W9q6eTswww.nccgroup.com/SimSim
incap_ses_255_2304533lAAEAEkJKXP1ISvNVPGJAwVoOGcAAAAAOv4CS9AwEvgWiZXEsrCfQw==.nccgroup.com/SimNão
.AspNetCore.Mvc.CookieTempDataProviderCfDJ8LD82gakNFZEnW5q21H6sm-RsREBiiVd2ob5HWb3iEqzWCkc1v7TTHLbEHdwBSGeKfjmO8kFqP75b1PZSH8Lvtuejx7KSbsYAfdPQAv1d4ScO-FKRxZSN0RMM-4fTZq7AhyWHKjR39BIRZWRrJTnBq5wuJ5xGx78UEyseugD59F6bilAGdADugSjOB35W9Wsmgwww.nccgroup.com/SimSim

Variáveis JavaScript · 18 encontradas

Copy link

Variáveis JavaScript globais carregadas no objeto janela de uma página são variáveis declaradas fora das funções e acessíveis de qualquer parte do código dentro do âmbito atual

NomeTipo
onbeforetoggleobject
documentPictureInPictureobject
onscrollendobject
rootobject
fundefined
dataLayerobject
MathJaxobject
criticalobject
setImmediatefunction
clearImmediatefunction

Mensagens de registo da consola · 53 encontradas

Copy link

Mensagens registadas na consola web

LevelOrigemMessage
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Zero.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Main-Regular.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Main-Bold.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Math-Italic.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Main-Italic.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Math-BoldItalic.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Size1-Regular.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Size2-Regular.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Size3-Regular.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".
errorsecurity
URL
https://www.nccgroup.com/us/
Texto
Refused to load the font 'https://cdn.jsdelivr.net/npm/mathjax@3/es5/output/chtml/fonts/woff-v2/MathJax_Size4-Regular.woff' because it violates the following Content Security Policy directive: "font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'".

Cabeçalhos de segurança · 5 encontrados

Copy link

Cabeçalhos de resposta HTTP que podem reforçar a segurança de uma aplicação web

Mais informações...
NomeValorApoio ao clienteInformação
Strict-Transport-Securitymax-age=2592000BomDeclarar que um só site pode ser acedido através de uma ligação segura (HTTPS).

Clique para saber mais...
X-Frame-OptionsSameOriginBomIndicar se um navegador deve ter permissão para renderizar uma página em <frame>, <iframe>, <embed> ou <object>.

Clique para saber mais...
X-Content-Type-OptionsnosniffBomIndicar que os tipos MIME anunciados nos cabeçalhos Tipo de conteúdo devem ser seguidos e não alterados.

Clique para saber mais...
Content-Security-Policyimg-src *.analytics.google.com/ *.bing.com/ *.doubleclick.net/ *.flippingbook.com *.googleadservices.com *.intercomcdn.com/ *.vimeocdn.com/ data: https://*.clarity.ms https://*.google-analytics.com/ https://d17lvj5xn8sco6.cloudfront.net https://downloads.intercomcdn.com https://i.ytimg.com/ https://logws1309.ati-host.net/ https://o.twimg.com https://pbs.twimg.com/ https://px.ads.linkedin.com https://ssl.gstatic.com https://static.intercomassets.com/ https://syndication.twitter.com https://www.buzzsprout.com/ https://www.google.co.uk https://www.google.com/ 'self' www.googletagmanager.com www.linkedin.com; connect-src *.analytics.google.com/ *.doubleclick.net/ *.flippingbook.com *.googleadservices.com *.googlesyndication.com/ apikeys.civiccomputing.com data: https://*.clarity.ms https://*.google-analytics.com/ https://*.in.applicationinsights.azure.com https://adservice.google.com/ https://api-iam.intercom.io/ https://cdn.linkedin.oribi.io https://js.zi-scripts.com/unified/v1/master/getSubscriptions https://nexus-websocket-a.intercom.io/ https://nexus-websocket-b.intercom.io/ https://px.ads.linkedin.com https://ws.zoominfo.com/ https://www.google.co.uk https://www.google.com/ 'self' wss://nexus-websocket-a.intercom.io/ wss://nexus-websocket-b.intercom.io/; script-src *.doubleclick.net/ *.flippingbook.com *.googleadservices.com *.intercom.io *.vimeo.com *.youtube.com *.youtube-nocookie.com cdn.jsdelivr.net cdnjs.cloudflare.com https://*.clarity.ms https://*.google-analytics.com/ https://ajax.googleapis.com https://apis.google.com https://cc.cdn.civiccomputing.com https://d33i2vgywgme2s.cloudfront.net https://js.intercomcdn.com/ https://js.monitor.azure.com https://js.zi-scripts.com/zi-tag.js https://logws1309.ati-host.net/ https://platform.twitter.com https://snap.licdn.com/li.lms-analytics/ https://syndication.twitter.com https://vimeo.com/ https://www.google.com/recaptcha/ https://www.gstatic.com pi.pardot.com 'self' 'unsafe-eval' 'unsafe-inline' www.googletagmanager.com; frame-src *.doubleclick.net/ *.flippingbook.com *.youtube-nocookie.com https://*.nccgroup.com/ https://export.highcharts.com/ https://intercom-sheets.com/ https://nccgroup.wavecast.io/ https://platform.twitter.com https://player.vimeo.com/ https://polaris.brighterir.com/ https://syndication.twitter.com https://videopress.com/ https://www.facebook.com/ https://www.google.com/recaptcha/ https://www.youtube.com/embed/ 'self'; default-src *.intercom.io *.vimeo.com *.vimeocdn.com/ *.youtube.com *.youtube-nocookie.com https://*.google-analytics.com/ https://pbs.twimg.com/ https://platform.twitter.com https://syndication.twitter.com 'self'; font-src *.intercomcdn.com/ https://fonts.googleapis.com/ https://fonts.gstatic.com/ https://js.intercomcdn.com/ 'self'; frame-ancestors explore.tanium.com; style-src https://fonts.googleapis.com/ https://platform.twitter.com 'self' 'unsafe-inline'; media-src https://js.intercomcdn.com/ https://pbs.twimg.com/ https://platform.twitter.com https://syndication.twitter.com 'self'; object-src 'self'BomControlar os recursos que o agente do utilizador tem permissão para carregar para uma determinada página.

Clique para saber mais...
Referrer-PolicyBomControlar a quantidade de informações de referência que deve ser incluída nos pedidos.

Clique para saber mais...
Clear-Site-DataBomControlar os dados armazenados por um navegador cliente quanto às suas origens.

Clique para saber mais...
X-Permitted-Cross-Domain-PoliciesBomControlar se um cliente web, como o Adobe Flash Player ou o Adobe Acrobat tem permissão para controlar dados entre domínios.

Clique para saber mais...
Permissions-PolicyNovoPermitir e negar o uso de recursos do navegador num documento ou iframe.

Clique para saber mais...
Cross-Origin-Embedder-PolicyNovoConfigurar a incorporação de recursos de origem cruzada no documento.

Clique para saber mais...
Cross-Origin-Opener-PolicyNovoGarantir que um documento de nível máximo não partilha um grupo de contexto de navegação com documentos de origem cruzada.

Clique para saber mais...
Cross-Origin-Resource-PolicyNovoSolicitar que o navegador bloqueie pedidos sem CORS de origem cruzada/entre sites para o recurso fornecido.

Clique para saber mais...
X-XSS-Protection1; mode=blockDescontinuadoDescontinuado. Impede o carregamento de páginas quando detetam ataques refletidos de scripting entre sites (XSS).

Clique para saber mais...
Feature-PolicyDescontinuadoDescontinuado. Substituído pelo cabeçalho Permissões-política.

Clique para saber mais...
Expect-CTDescontinuadoDescontinuado. Optar por relatar e/ou aplicar requisitos de transparência de certificados.

Clique para saber mais...
Public-Key-PinsDescontinuadoDescontinuado. Permitir que sites HTTPS resistam à falsificação de invasores usando certificados emitidos incorretamente ou fraudulentos.

Clique para saber mais...

PerformanceNavigationTiming

Copy link

A interface PerformanceNavigationTiming fornece métricas relativas aos eventos de navegação de documentos do navegador

Mais informações...

Processar evento de descarga

EventoCronometragem (ms)
unloadEventStart0
unloadEventEnd0

Redirecionar

EventoCronometragem (ms)
redirectStart1
redirectEnd544

Inicialização do Service Worker

EventoCronometragem (ms)
workerStart0

Evento de recolha do Service Worker

EventoCronometragem (ms)
fetchStart544

DNS

EventoCronometragem (ms)
domainLookupStart544
domainLookupEnd544

TCP

EventoCronometragem (ms)
connectStart544
secureConnectionStart544
connectEnd544

Pedido

EventoCronometragem (ms)
requestStart548

Resposta

EventoCronometragem (ms)
responseStart631
responseEnd661

A processar

EventoCronometragem (ms)
domInteractive1813
domContentLoadedEventStart1813
domContentLoadedEventEnd1834
domComplete1855

Carregar

EventoCronometragem (ms)
loadEventStart1855
loadEventEnd1858