JSON result object for "http://www.owasp.org/"

Note: This is not a stable API during the beta. Providing highlighted JSON instead of raw JSON data is therefore intentional. 

{
  "flashcookies_count": null,
  "mx_a_records_reverse": [
    [
      1,
      [
        [
          "wk-in-f26.1e100.net"
        ]
      ]
    ],
    [
      5,
      [
        [
          "ea-in-f27.1e100.net"
        ]
      ]
    ],
    [
      5,
      [
        [
          "rc-in-f26.1e100.net"
        ]
      ]
    ],
    [
      10,
      [
        [
          "la-in-f26.1e100.net"
        ]
      ]
    ],
    [
      10,
      [
        [
          "sa-in-f26.1e100.net"
        ]
      ]
    ]
  ],
  "third_parties": [
    "www.google-analytics.com"
  ],
  "mx_has_protocol_tls1_2": true,
  "final_url_is_https": false,
  "final_url": "http://www.owasp.org/",
  "mx_pfs": true,
  "mx_ciphers": {
    "std_3DES": {
      "severity": "MEDIUM",
      "finding": "Triple DES Ciphers (Medium)                offered - not too bad"
    }
  },
  "requests_count": 35,
  "mx_has_protocol_tls1_3": true,
  "mx_has_protocol_tls1": true,
  "a_locations": [
    "United States"
  ],
  "initial_url": "http://www.owasp.org/",
  "mx_records": [
    [
      1,
      "aspmx.l.google.com"
    ],
    [
      5,
      "alt1.aspmx.l.google.com"
    ],
    [
      5,
      "alt2.aspmx.l.google.com"
    ],
    [
      10,
      "alt3.aspmx.l.google.com"
    ],
    [
      10,
      "alt4.aspmx.l.google.com"
    ]
  ],
  "web_has_ssl": false,
  "flashcookies": [],
  "redirected_to_https": false,
  "mx_ssl_finished": true,
  "openwpm_final_url": "http://www.owasp.org/",
  "mixed_content": false,
  "headerchecks": {
    "x-content-type-options": {
      "status": "OK",
      "value": "nosniff"
    },
    "x-frame-options": {
      "status": "INFO",
      "value": "SAMEORIGIN"
    },
    "content-security-policy": {
      "status": "INFO",
      "value": "default-src 'self' https://api.github.com https://*.githubusercontent.com https://*.google-analytics.com https://owaspadmin.azurewebsites.net https://*.twimg.com https://platform.twitter.com https://www.youtube.com https://*.doubleclick.net; frame-ancestors 'self'; frame-src https://*.vuejs.org https://*.stripe.com https://*.wufoo.com https://*.sched.com https://*.google.com https://*.twitter.com https://www.youtube.com https://w.soundcloud.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://fonts.googleapis.com https://app.diagrams.net https://cdnjs.cloudflare.com https://cse.google.com https://*.vuejs.org https://*.stripe.com https://*.wufoo.com https://*.youtube.com https://*.meetup.com https://*.sched.com https://*.google-analytics.com https://unpkg.com https://buttons.github.io https://www.google.com https://*.gstatic.com https://*.twitter.com https://*.twimg.com; style-src 'self' 'unsafe-inline' https://*.gstatic.com https://cdnjs.cloudflare.com https://www.google.com https://fonts.googleapis.com https://platform.twitter.com https://*.twimg.com data:; font-src 'self' fonts.gstatic.com; manifest-src 'self' https://pay.google.com; img-src 'self' https://*.globalappsec.org data: www.w3.org https://licensebuttons.net https://img.shields.io https://*.twitter.com https://github.githubassets.com https://*.twimg.com https://platform.twitter.com https://*.githubusercontent.com https://*.vercel.app https://*.cloudfront.net https://*.coreinfrastructure.org https://*.securityknowledgeframework.org https://badges.gitter.im https://travis-ci.org https://api.travis-ci.org https://s3.amazonaws.com https://snyk.io https://coveralls.io https://requires.io https://github.com https://*.googleapis.com https://*.google.com https://*.gstatic.com"
    },
    "x-xss-protection": {
      "status": "MISSING",
      "value": ""
    },
    "referrer-policy": {
      "status": "WARN",
      "key": "referrer-policy",
      "value": "same-origin"
    }
  },
  "mx_has_ssl": true,
  "web_ssl_finished": true,
  "https": false,
  "mx_has_protocol_sslv3": false,
  "tracker_requests": [
    "www.google-analytics.com"
  ],
  "third_parties_count": 1,
  "mx_cert_trusted_reason": "",
  "google_analytics_present": false,
  "https_error": "ERROR 403: Forbidden.",
  "requests": [
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "http://www.owasp.org/"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://www.owasp.org/"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/js/js.cookie.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://www.google-analytics.com/analytics.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/css/styles.css"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/js/jquery-3.4.1.min.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/js/util.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/js/yaml.min.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/js/luxon.min.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/js/kjua.min.js"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/logo.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/AppSec_DC_2023_Banner_1200x300_V01.jpeg"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/events/SingaporeLogo.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/people/leader_spyros.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/content/ams-preso-new.jpg"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/fontawesome/fa-solid-900.woff2"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/font/ubuntu-regular.woff2"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/fontawesome/fa-regular-400.woff2"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/font/ubuntu-medium.woff2"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/fontawesome/fa-brands-400.woff2"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/sitedata/banner-data.yml"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/sitedata/popup-data.yml"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/www--site-theme/assets/sitedata/menus.json"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/sitedata/corp_members.yml"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/Bloomberg.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/checkmarx.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/altitude-networks.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/qualys.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/FluidAttacks.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/apiiro_logo_for_owasp.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/probely_logo_black.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/security-innovation.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/heyhacklogo.png"
    },
    {
      "headers": null,
      "method": null,
      "referrer": null,
      "url": "https://owasp.org/assets/images/corp-member-logo/openappsec_CheckPointlogo_owasp.png"
    }
  ],
  "mx_vulnerabilities": {
    "beast": {
      "cve": "CVE-2011-3389",
      "severity": "LOW",
      "finding": "BEAST: VULNERABLE -- but also supports higher protocols (possible mitigation): TLSv1.1 TLSv1.2"
    },
    "lucky13": {
      "cve": "CVE-2013-0169",
      "severity": "LOW",
      "finding": "potentially vulnerable to LUCKY13, uses cipher block chaining (CBC) ciphers with TLS. Check patches"
    },
    "sweet32": {
      "cve": "CVE-2016-2183, CVE-2016-6329",
      "severity": "LOW",
      "finding": "SWEET32, uses 64 bit block ciphers"
    },
    "cbc_tls1": {
      "cve": "CVE-2011-3389",
      "severity": "MEDIUM",
      "finding": "BEAST: CBC ciphers for TLS1: ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-SHA AES128-SHA AES256-SHA DES-CBC3-SHA  ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA"
    }
  },
  "mx_cert_trusted": true,
  "google_analytics_anonymizeIP_set": 0,
  "profilecookies": [],
  "cname_records": [],
  "success": true,
  "cookie_stats": {
    "first_party_flash": 0,
    "first_party_long": 0,
    "third_party_track_domains": [],
    "third_party_track_uniq": 0,
    "first_party_short": 0,
    "third_party_long": 0,
    "third_party_short": 0,
    "third_party_track": 0,
    "third_party_flash": 0
  },
  "mx_locations": [
    "United States"
  ],
  "cookies_count": 0,
  "third_party_requests_count": 1,
  "google_analytics_anonymizeIP_not_set": 0,
  "leaks": [],
  "reachable": true,
  "a_records": [
    "104.22.27.77",
    "172.67.10.39",
    "104.22.26.77"
  ],
  "a_records_reverse": [
    [],
    [],
    []
  ],
  "mx_a_records": [
    [
      1,
      [
        "74.125.206.26"
      ]
    ],
    [
      5,
      [
        "142.250.153.27"
      ]
    ],
    [
      5,
      [
        "142.251.9.26"
      ]
    ],
    [
      10,
      [
        "142.250.150.26"
      ]
    ],
    [
      10,
      [
        "74.125.200.26"
      ]
    ]
  ],
  "responses": null,
  "mx_has_protocol_tls1_1": true,
  "http_error": "ERROR 403: Forbidden.",
  "final_https_url": "https://www.owasp.org/"
}
All times are shown in UTC (GMT+0).

About

PrivacyScore is a website scanning tool that allows anyone to benchmark security and privacy features of websites. Rankings are public and can be configured to one's preferences. PrivacyScore helps users, activists, and data protection authorities.

Feedback

We are curious to receive your feedback. Please do not hesitate to contact us if you observe any errors. Site owners can request to exclude their sites from future scans.

Beta Status

PrivacyScore is currently in public beta. While we're giving our very best, we currently cannot guarantee the accuracy of the displayed results and rankings.
 

Privacy Policy · Imprint / Impressum