JSON result object for "https://google.com/"

Note: This is not a stable API during the beta. Providing highlighted JSON instead of raw JSON data is therefore intentional.

{
  "web_cert_trusted_reason": "",
  "google_analytics_present": false,
  "mx_has_protocol_tls1_3": true,
  "web_has_protocol_tls1_2": true,
  "flashcookies_count": null,
  "mx_a_records_reverse": [
    [
      10,
      [
        [
          "wl-in-f27.1e100.net"
        ]
      ]
    ],
    [
      20,
      [
        [
          "lr-in-f27.1e100.net"
        ]
      ]
    ],
    [
      30,
      [
        []
      ]
    ],
    [
      40,
      [
        [
          "tm-in-f27.1e100.net"
        ]
      ]
    ],
    [
      50,
      [
        [
          "pf-in-f27.1e100.net"
        ]
      ]
    ]
  ],
  "third_parties": [
    "ssl.gstatic.com",
    "www.google.de",
    "www.gstatic.com"
  ],
  "a_records": [
    "172.217.21.206"
  ],
  "web_has_hsts_header_sufficient_time": true,
  "final_https_url": "https://www.google.com/",
  "a_records_reverse": [
    [
      "fra16s12-in-f206.1e100.net",
      "fra16s12-in-f14.1e100.net"
    ]
  ],
  "mx_has_ssl": true,
  "flashcookies": [],
  "tracker_requests": [],
  "web_has_protocol_tls1_3": true,
  "web_has_hsts_header": true,
  "initial_url": "https://google.com/",
  "web_has_hsts_preload_header": false,
  "web_has_hsts_preload": true,
  "final_url_is_https": true,
  "third_parties_count": 3,
  "mx_a_records": [
    [
      10,
      [
        "64.233.167.27"
      ]
    ],
    [
      20,
      [
        "209.85.233.27"
      ]
    ],
    [
      30,
      [
        "172.217.194.27"
      ]
    ],
    [
      40,
      [
        "108.177.97.27"
      ]
    ],
    [
      50,
      [
        "173.194.202.27"
      ]
    ]
  ],
  "mx_cert_trusted": true,
  "mx_cert_trusted_reason": "",
  "success": true,
  "mx_ssl_finished": true,
  "web_vulnerabilities": {
    "breach": {
      "severity": "HIGH",
      "cve": "CVE-2013-3587",
      "finding": "BREACH: potentially VULNERABLE, uses gzip HTTP compression.  - only supplied '/' tested ( Can be ignored for static pages or if no secrets in the page)"
    },
    "cbc_tls1": {
      "severity": "MEDIUM",
      "cve": "CVE-2011-3389",
      "finding": "BEAST: CBC ciphers for TLS1: ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-SHA AES128-SHA AES256-SHA DES-CBC3-SHA  ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA"
    },
    "beast": {
      "severity": "LOW",
      "cve": "CVE-2011-3389",
      "finding": "BEAST: VULNERABLE -- but also supports higher protocols (possible mitigation): TLSv1.1 TLSv1.2"
    },
    "sweet32": {
      "severity": "LOW",
      "cve": "CVE-2016-2183, CVE-2016-6329",
      "finding": "SWEET32, uses 64 bit block ciphers"
    },
    "lucky13": {
      "severity": "LOW",
      "cve": "CVE-2013-0169",
      "finding": "potentially vulnerable to LUCKY13, uses cipher block chaining (CBC) ciphers with TLS. Check patches"
    }
  },
  "mx_records": [
    [
      10,
      "aspmx.l.google.com"
    ],
    [
      20,
      "alt1.aspmx.l.google.com"
    ],
    [
      30,
      "alt2.aspmx.l.google.com"
    ],
    [
      40,
      "alt3.aspmx.l.google.com"
    ],
    [
      50,
      "alt4.aspmx.l.google.com"
    ]
  ],
  "mx_has_protocol_tls1": true,
  "mx_locations": [
    "United States"
  ],
  "mx_has_protocol_tls1_1": true,
  "final_url": "https://www.google.com/",
  "responses": null,
  "web_has_protocol_tls1_1": true,
  "https": true,
  "mx_has_protocol_sslv3": false,
  "reachable": true,
  "cookie_stats": {
    "third_party_track_domains": [],
    "first_party_long": 3,
    "third_party_track_uniq": 0,
    "third_party_flash": 0,
    "first_party_short": 0,
    "third_party_track": 0,
    "third_party_long": 2,
    "first_party_flash": 0,
    "third_party_short": 0
  },
  "cname_records": [],
  "mx_ciphers": {
    "std_3DES": {
      "severity": "MEDIUM",
      "finding": "Triple DES Ciphers (Medium)                offered - not too bad"
    }
  },
  "redirected_to_https": false,
  "web_ciphers": {
    "std_3DES": {
      "severity": "MEDIUM",
      "finding": "Triple DES Ciphers (Medium)                offered - not too bad"
    }
  },
  "web_has_protocol_tls1": true,
  "requests": [
    {
      "referrer": null,
      "url": "https://google.com/",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/images/hpp/shield_privacy_checkup_green_2x_web_96dp.png",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/logos/doodles/2019/celebrating-wellies-4652654377566208-law.gif",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://consent.google.com/status?continue=https://www.google.com&m=0&pc=s&timestamp=1575535610&gl=DE",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://ssl.gstatic.com/gb/images/i1_1967ca6a.png",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/images/searchbox/desktop_searchbox_sprites302_hr.webp",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.gstatic.com/images/branding/googlemic/2x/googlemic_color_24dp.png",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/images/nav_logo299.webp",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/xjs/_/js/k=xjs.s.de.A-cILy-5ysg.O/ck=xjs.s.w9X5qvL5xGI.L.W.O/m=Fkg7bd,HcFEGb,IvlUe,MC8mtf,OF7gzc,RMhBfe,T4BAC,TJw5qb,TbaHGc,Y33vzc,cdos,hsm,iDPoPb,jsa,mvYTse,tg8oTe,uz938c,vWNDde,ws9Tlc,yQ43ff,d,csi/am=AAAAsAjYdQcE-X8rAAgA7BgAAALcgg0WCENChbE6AREg/d=1/dg=2/br=1/ct=zgms/rs=ACT90oG5FswEZGanl-lFownkZm_5YUE5vQ",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/gen_204?s=webhp&t=aft&atyp=csi&ei=-sPoXYIagdHAAsnthqgM&rt=wsrt.274,aft.124,prt.105&bl=99lT&ima=2&imad=0&imn=4",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/gen_204?atyp=csi&ei=-sPoXYIagdHAAsnthqgM&s=jsa&jsi=s,t.0,et.focus,n.iDPoPb,cn.1&zx=1575535610310",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/xjs/_/js/k=xjs.s.de.A-cILy-5ysg.O/ck=xjs.s.w9X5qvL5xGI.L.W.O/am=AAAAsAjYdQcE-X8rAAgA7BgAAALcgg0WCENChbE6AREg/d=1/exm=Fkg7bd,HcFEGb,IvlUe,MC8mtf,OF7gzc,RMhBfe,T4BAC,TJw5qb,TbaHGc,Y33vzc,cdos,csi,d,hsm,iDPoPb,jsa,mvYTse,tg8oTe,uz938c,vWNDde,ws9Tlc,yQ43ff/ed=1/dg=2/br=1/ct=zgms/rs=ACT90oG5FswEZGanl-lFownkZm_5YUE5vQ/m=GxIAgd,MkHyGd,OG6ZHd,T6sTsf,T7XTS,URQPYc,WgDvvc,aa,abd,async,dv7Bfe,dvl,eN4qad,fEVMic,foot,k27Oqb,lu,m,mUpTid,mu,o02Jie,pB6Zqd,rHjpXd,sb_wiz,sf,sonic,spch,uiNkee,xz7cCd,zbML3c?xjs=s1",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.de/domainless/read?igu=1",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/gen_204?atyp=i&ei=-sPoXYIagdHAAsnthqgM&vet=10ahUKEwiC__XCj57mAhWBKFAKHcm2AcUQsmQIFg..s&zx=1575535610392",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/gen_204?atyp=csi&ei=-sPoXYIagdHAAsnthqgM&s=webhp&t=all&bl=99lT&imn=4&adh=&conn=onchange&ima=2&imad=0&ime=2&imeb=0&imeo=0&wh=1080&scp=0&net=dl.9100,ect.4g,rtt.0&mem=ujhs.10,tjhs.13,jhsl.2190,dm.4&sto=&sys=hc.2&rt=aft.124,iml.124,prt.105,dcl.109,xjsls.123,xjses.204,xjsee.231,xjs.231,ol.341,wsrt.274,cst.30,dnst.1,rqst.98,rspt.17,sslt.20,rqstt.193,unt.160,cstt.162,dit.383&zx=1575535610419",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://adservice.google.com/adsid/google/ui",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.gstatic.com/og/_/js/k=og.og2.en_US.4x867LSbVXU.O/rt=j/m=def,aswid/exm=in,fot/d=1/ed=1/rs=AA2YrTujuZHcDUyKvl4pFgWc20X0injnlg",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://www.google.com/domainless/write?igu=1&data=&xsrf=AO61pXQo-KknCqk6wqDJ_I7_RZeZlpoaaQ:1575535610032",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.7kWSr24wXFc.O/m=gapi_iframes,googleapis_client,plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-i9r7IbCTUQfJ0v-FPhRKRS8aihQ/cb=gapi.loaded_0",
      "method": null,
      "headers": null
    },
    {
      "referrer": null,
      "url": "https://ogs.google.com/widget/app/so?hl=de&origin=https%3A%2F%2Fwww.google.com&pid=1&spid=1&usegapi=1",
      "method": null,
      "headers": null
    }
  ],
  "headerchecks": {
    "x-content-type-options": {
      "value": "",
      "status": "MISSING"
    },
    "x-frame-options": {
      "value": "SAMEORIGIN",
      "status": "INFO"
    },
    "x-xss-protection": {
      "value": "0",
      "status": "INFO"
    },
    "content-security-policy": {
      "value": "",
      "status": "MISSING"
    },
    "referrer-policy": {
      "value": "",
      "status": "MISSING"
    }
  },
  "web_cert_trusted": true,
  "mx_pfs": true,
  "mx_has_protocol_tls1_2": true,
  "mx_vulnerabilities": {
    "cbc_tls1": {
      "severity": "MEDIUM",
      "cve": "CVE-2011-3389",
      "finding": "BEAST: CBC ciphers for TLS1: ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-SHA AES128-SHA AES256-SHA DES-CBC3-SHA"
    },
    "beast": {
      "severity": "LOW",
      "cve": "CVE-2011-3389",
      "finding": "BEAST: VULNERABLE -- but also supports higher protocols (possible mitigation): TLSv1.1 TLSv1.2"
    },
    "sweet32": {
      "severity": "LOW",
      "cve": "CVE-2016-2183, CVE-2016-6329",
      "finding": "SWEET32, uses 64 bit block ciphers"
    },
    "lucky13": {
      "severity": "LOW",
      "cve": "CVE-2013-0169",
      "finding": "potentially vulnerable to LUCKY13, uses cipher block chaining (CBC) ciphers with TLS. Check patches"
    }
  },
  "mixed_content": false,
  "requests_count": 21,
  "openwpm_final_url": "https://www.google.com/",
  "web_ssl_finished": true,
  "web_has_ssl": true,
  "cookies_count": 5,
  "third_party_requests_count": 4,
  "web_has_hpkp_header": false,
  "web_pfs": true,
  "profilecookies": [
    {
      "baseDomain": "google.com",
      "expiry": 1578127610.482322,
      "value": "2019-12-05-08",
      "lifetime": 2592001.4823219776,
      "isHttpOnly": false,
      "host": ".google.com",
      "path": "/",
      "name": "1P_JAR",
      "isSecure": false
    },
    {
      "baseDomain": "google.de",
      "expiry": 2145916800.451621,
      "value": "WP.281164",
      "lifetime": 570381191.451621,
      "isHttpOnly": false,
      "host": ".google.de",
      "path": "/",
      "name": "CONSENT",
      "isSecure": false
    },
    {
      "baseDomain": "google.de",
      "expiry": 1591346810.451602,
      "value": "193=Bpjn4OfaHLy9S7Ro2jQnDoSm7ZEN4Y7B3L_MBzl4qtk_8vGLJasbO_C1l43T_ljC1jQtMAqF2-z315L1DQuZ42lqqGBPvr3a2iBKhDb2wKA4qjMV1iZgOScU2KDrkDukzx8J8TQWYMHrswIin6OzRO-kzXpxXZZcEyps285nLHo",
      "lifetime": 15811201.451601982,
      "isHttpOnly": true,
      "host": ".google.de",
      "path": "/",
      "name": "NID",
      "isSecure": false
    },
    {
      "baseDomain": "google.com",
      "expiry": 1591346810.075194,
      "value": "193=H5oL1C4Nkl0IkYkPehA1hcHcFkYK9I-45bf9EwAqFVyLa4jKiLCLCe-QfromRZe_JcOVHZWKdAxl5AcLh92IkRoSZ_EDgEROI9rKeglMTn5enRiQ_RSNiw8O2LXhkn8xILTjk8HAmaxphkglIFrpyifVS7CTx_MlXBV59k6VkpM",
      "lifetime": 15811201.075193882,
      "isHttpOnly": true,
      "host": ".google.com",
      "path": "/",
      "name": "NID",
      "isSecure": false
    },
    {
      "baseDomain": "google.com",
      "expiry": 2145916800.960799,
      "value": "WP.281164",
      "lifetime": 570381191.960799,
      "isHttpOnly": false,
      "host": ".google.com",
      "path": "/",
      "name": "CONSENT",
      "isSecure": false
    }
  ],
  "a_locations": [
    "United States"
  ],
  "leaks": [],
  "web_has_protocol_sslv3": false
}