Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
" + }, + { + "name": "Cross-Domain Misconfiguration", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server
" + }, + { + "name": "Missing Anti-clickjacking Header", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "The response does not include either Content-Security-Policy with 'frame-ancestors' directive or X-Frame-Options to protect against 'ClickJacking' attacks.
" + }, + { + "name": "Sub Resource Integrity Attribute Missing", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.
" + }, + { + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "A dangerous JS function seems to be in use that would leave the site vulnerable.
" + }, + { + "name": "Permissions Policy Header Not Set", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "A timestamp was disclosed by the application/web server - Unix
" + }, + { + "name": "X-Content-Type-Options Header Missing", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.
" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.
" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
" + }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.
" + }, + { + "name": "Retrieved from Cache", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "The content was retrieved from a shared cache. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
" + }, + { + "name": "Sec-Fetch-Dest Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.
" + }, + { + "name": "Sec-Fetch-Mode Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.
" + }, + { + "name": "Sec-Fetch-Site Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Specifies the relationship between request initiator's origin and target's origin.
" + }, + { + "name": "Sec-Fetch-User Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Specifies if a navigation request was initiated by a user.
" + }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
" + } + ] + } + ] + }, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://www.multi.coop/", + "finalUrl": "https://www.multi.coop/", + "fetchTime": "2023-10-31T15:56:23.884Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.711189079284668 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 9652, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 5326, + "firstMeaningfulPaint": 5326, + "largestContentfulPaint": 7962, + "interactive": 9652, + "speedIndex": 5326, + "totalBlockingTime": 1313, + "maxPotentialFID": 672, + "cumulativeLayoutShift": 0.5008818584018283, + "cumulativeLayoutShiftMainFrame": 0.5008818584018283, + "totalCumulativeLayoutShift": 0.5008818584018283, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 336086036, + "observedNavigationStart": 0, + "observedNavigationStartTs": 336086036, + "observedFirstPaint": 818, + "observedFirstPaintTs": 336903688, + "observedFirstContentfulPaint": 818, + "observedFirstContentfulPaintTs": 336903688, + "observedFirstContentfulPaintAllFrames": 818, + "observedFirstContentfulPaintAllFramesTs": 336903688, + "observedFirstMeaningfulPaint": 818, + "observedFirstMeaningfulPaintTs": 336903688, + "observedLargestContentfulPaint": 943, + "observedLargestContentfulPaintTs": 337028850, + "observedLargestContentfulPaintAllFrames": 943, + "observedLargestContentfulPaintAllFramesTs": 337028850, + "observedTraceEnd": 3331, + "observedTraceEndTs": 339416575, + "observedLoad": 576, + "observedLoadTs": 336661860, + "observedDomContentLoaded": 547, + "observedDomContentLoadedTs": 336633477, + "observedCumulativeLayoutShift": 0.5008818584018283, + "observedCumulativeLayoutShiftMainFrame": 0.5008818584018283, + "observedTotalCumulativeLayoutShift": 0.5008818584018283, + "observedFirstVisualChange": 817, + "observedFirstVisualChangeTs": 336903036, + "observedLastVisualChange": 1417, + "observedLastVisualChangeTs": 337503036, + "observedSpeedIndex": 911, + "observedSpeedIndexTs": 336997353 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 39, + "numScripts": 8, + "numStylesheets": 1, + "numFonts": 1, + "numTasks": 726, + "numTasksOver10ms": 13, + "numTasksOver25ms": 7, + "numTasksOver50ms": 2, + "numTasksOver100ms": 2, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 107539633.25086617, + "maxRtt": 89.31600000000002, + "maxServerLatency": 29.741999999999948, + "totalByteWeight": 2562777, + "totalTaskTime": 745.9090000000056, + "mainDocumentTransferSize": 1080 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": null, + "github_repository": null, + "budget_page": null, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": null, + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://www.multi.coop", + "size": 4426.375, + "nodes": 433, + "requests": 41, + "grade": "C", + "score": 59, + "ges": 1.82, + "water": 2.73, + "ecoindex_version": "5.4.2", + "date": "2023-10-31 15:53:59.529252", + "page_type": null + } + ], + "sonarcloud": null, + "summary": { + "404": "A+", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-01-05T12:20:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 32, + "lighthouse_performance": 0.711189079284668, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.86, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", + "declaration-a11y": "F", + "ecoindexGrade": "C" + } + }, + { + "404": [], + "url": "https://www.multi.coop", + "title": "Multi", + "repositories": [ + "multi-coop/multi-site-app" + ], + "http": null, + "updownio": null, + "nmap": null, + "dependabot": null, + "codescan": null, + "testssl": [ + { + "id": "service", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "server -- TLS 1.3 client determined" + }, + { + "id": "FS", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "prime256v1" + }, + { + "id": "TLS_extensions", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + }, + { + "id": "TLS_session_ticket", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" + }, + { + "id": "cert_keyUsage", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature" + }, + { + "id": "cert_extKeyUsage", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "039C3EE535D1748D8FDCDE61B1227E5D374A" + }, + { + "id": "cert_serialNumberLen", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "E14AF9BE7FA048B87D9CD5268A14919E49E48FEF" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "4D9874E2871344A761E80C747D3C2A1A19CC14F4DF9B26E00B0A2BA89869F0D5" + }, + { + "id": "cert", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "multi.coop" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "*.netlify.app" + }, + { + "id": "cert_subjectAltName", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "multi.coop www.multi.coop" + }, + { + "id": "cert_trust", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "65 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "2023-10-07 12:20" + }, + { + "id": "cert_notAfter", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "2024-01-05 12:20" + }, + { + "id": "cert_extlifeSpan", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "+1 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "1698768620" + }, + { + "id": "HTTP_headerAge", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "1 seconds" + }, + { + "id": "HSTS_time", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "Netlify" + }, + { + "id": "banner_application", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "public,max-age=0,must-revalidate" + }, + { + "id": "banner_reverseproxy", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + }, + { + "id": "LOGJAM", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-java1102", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-go_1178", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "key_exchange_score_weighted", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "cipher_strength_score", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "INFO", + "finding": "84" + }, + { + "id": "overall_grade", + "ip": "www.multi.coop/44.219.53.183", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "server -- TLS 1.3 client determined" + }, + { + "id": "FS", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "prime256v1" + }, + { + "id": "TLS_extensions", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" + }, + { + "id": "TLS_session_ticket", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "EC 256 bits (curve P-256)" + }, + { + "id": "cert_keyUsage", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature" + }, + { + "id": "cert_extKeyUsage", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "039C3EE535D1748D8FDCDE61B1227E5D374A" + }, + { + "id": "cert_serialNumberLen", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "E14AF9BE7FA048B87D9CD5268A14919E49E48FEF" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "4D9874E2871344A761E80C747D3C2A1A19CC14F4DF9B26E00B0A2BA89869F0D5" + }, + { + "id": "cert", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "multi.coop" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "*.netlify.app" + }, + { + "id": "cert_subjectAltName", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "multi.coop www.multi.coop" + }, + { + "id": "cert_trust", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "65 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "2023-10-07 12:20" + }, + { + "id": "cert_notAfter", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "2024-01-05 12:20" + }, + { + "id": "cert_extlifeSpan", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "+15 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "1698768665" + }, + { + "id": "HTTP_headerAge", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "15 seconds" + }, + { + "id": "HSTS_time", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "Netlify" + }, + { + "id": "banner_application", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "public,max-age=0,must-revalidate" + }, + { + "id": "banner_reverseproxy", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, br gzip deflate HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "no RSA certificate, can't be used with SSLv2 elsewhere" + }, + { + "id": "LOGJAM", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-java1102", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-go_1178", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "key_exchange_score_weighted", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "cipher_strength_score", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "84" + }, + { + "id": "overall_grade", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "scanTime", + "ip": "www.multi.coop/54.84.236.175", + "port": "443", + "severity": "INFO", + "finding": "95" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@mdi/font@5.8.55/css/materialdesignicons.min.css", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/config/global.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/config/navbar.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/config/footer.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/config/routes.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/styles/custom-css-multi.css", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "unknown", + "url": "https://cdn.matomo.cloud/multi.matomo.cloud/matomo.js" + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/texts/landing/landing-head-fr.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/texts/landing/catchphrase-fr.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/texts/landing/landing-clients-intro-fr.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/texts/landing/landing-clients-logos.md", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/logos/logo-MULTI-colored-063442-02.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@mdi/font@5.8.55/fonts/materialdesignicons-webfont.woff2?v=5.8.55", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/@mdi/font@5.8.55/fonts/materialdesignicons-webfont.woff2?v=5.8.55", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://multi.matomo.cloud/matomo.php?action_name=multi%20-%20www.multi.coop&idsite=3&rec=1&r=593172&h=15&m=52&s=36&url=https%3A%2F%2Fwww.multi.coop%2F%3Flocale%3Dfr&_id=80c0f8b30d0de48e&_idn=0&send_image=0&_refts=0&pv_id=rHbqs6&pf_net=163&pf_srv=4&pf_tfr=2&pf_dm1=514&pf_dm2=29&pf_onl=0&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/julien-update-colors/images/logos/logo-MULTI-colored-063442-02.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/odf-logo.svg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/dinum-logo.svg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/mte-logo.svg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/min-mer-logo.svg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/anct-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/ademe-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/fabmob-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/mednum-logo.jpg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/mednum-bfc-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/ping-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/conumm-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/rhinocc-logo.jpg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/dept-doubs-logo.jpg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/epa-senart-logo.png", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/francilin-logo.jpg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + }, + { + "type": "github", + "url": "https://raw.githubusercontent.com/multi-coop/multi-site-contents/main/images/clients/decider-ensemble-logo.jpg", + "details": { + "id": "github", + "message": "Dont link GitHub ressources, host them directly" + } + } + ], + "cookies": [], + "headers": { + "accept-ranges": "bytes", + "access-control-allow-origin": "*", + "age": "37351", + "cache-control": "public,max-age=0,must-revalidate", + "content-encoding": "br", + "content-length": "866", + "content-type": "text/html; charset=UTF-8", + "date": "Tue, 31 Oct 2023 15:52:35 GMT", + "etag": "\"0671994594b63a058f12f9bb30d0270b-ssl-df\"", + "server": "Netlify", + "strict-transport-security": "max-age=31536000", + "vary": "Accept-Encoding", + "x-nf-request-id": "01HE36ZJVYD18JK82J26MDCAS6" + }, + "endpoints": [ + { + "hostname": "www.multi.coop", + "ip": "54.161.234.33", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 38.6583, + "longitude": -77.2481, + "time_zone": "America/New_York" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "146.75.37.229", + "geoip": { + "city": { + "geoname_id": 4781530, + "names": { + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 38.9609, + "longitude": -77.3429, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20190" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "raw.githubusercontent.com", + "ip": "185.199.111.133", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 34.0544, + "longitude": -118.244, + "time_zone": "America/Los_Angeles" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 5332921, + "iso_code": "CA", + "names": { + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" + } + } + ] + } + }, + { + "hostname": "cdn.matomo.cloud", + "ip": "3.162.125.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "multi.matomo.cloud", + "ip": "18.195.235.189", + "geoip": { + "city": { + "geoname_id": 2925533, + "names": { + "de": "Frankfurt am Main", + "en": "Frankfurt am Main", + "es": "Francfort", + "fr": "Francfort-sur-le-Main", + "ja": "フランクフルト・アム・マイン", + "pt-BR": "Frankfurt am Main", + "ru": "Франкфурт", + "zh-CN": "法兰克福" + } + }, + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 2921044, + "is_in_european_union": true, + "iso_code": "DE", + "names": { + "de": "Deutschland", + "en": "Germany", + "es": "Alemania", + "fr": "Allemagne", + "ja": "ドイツ連邦共和国", + "pt-BR": "Alemanha", + "ru": "ФРГ", + "zh-CN": "德国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 50.1188, + "longitude": 8.6843, + "time_zone": "Europe/Berlin" + }, + "postal": { + "code": "60313" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "Vereinigte Staaten", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 2905330, + "iso_code": "HE", + "names": { + "de": "Hessen", + "en": "Hesse", + "es": "Hessen", + "fr": "Hesse", + "ru": "Гессен" + } + } + ] + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://www.multi.coop/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "node-js", + "name": "Node.js", + "description": "Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.", + "confidence": 100, + "version": null, + "icon": "Node.js.svg", + "website": "https://nodejs.org", + "cpe": "cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "vue-js", + "name": "Vue.js", + "description": "Vue.js is an open-source model–view–viewmodel JavaScript framework for building user interfaces and single-page applications.", + "confidence": 100, + "version": null, + "icon": "vue.svg", + "website": "https://vuejs.org", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ] + }, + { + "slug": "nuxt-js", + "name": "Nuxt.js", + "description": "Nuxt is a Vue framework for developing modern web applications.", + "confidence": 100, + "version": null, + "icon": "Nuxt.js.svg", + "website": "https://nuxt.com", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + }, + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + }, + { + "id": 22, + "slug": "web-servers", + "name": "Web servers" + }, + { + "id": 57, + "slug": "static-site-generator", + "name": "Static site generator" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.20.2", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "confidence": 100, + "version": null, + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "netlify", + "name": "Netlify", + "description": "Netlify providers hosting and server-less backend services for web applications and static websites.", + "confidence": 100, + "version": null, + "icon": "Netlify.svg", + "website": "https://www.netlify.com/", + "cpe": null, + "categories": [ + { + "id": 62, + "slug": "paas", + "name": "PaaS" + }, + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": { + "@programName": "ZAP", + "@version": "2.14.0", + "@generated": "Tue, 31 Oct 2023 15:56:03", + "site": [ + { + "@name": "https://www.multi.coop", + "@host": "www.multi.coop", + "@port": "443", + "@ssl": "true", + "alerts": [ + { + "name": "Content Security Policy (CSP) Header Not Set", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.
" + }, + { + "name": "Cross-Domain Misconfiguration", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server
" + }, + { + "name": "Missing Anti-clickjacking Header", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "The response does not include either Content-Security-Policy with 'frame-ancestors' directive or X-Frame-Options to protect against 'ClickJacking' attacks.
" + }, + { + "name": "Sub Resource Integrity Attribute Missing", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.
" + }, + { + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "A dangerous JS function seems to be in use that would leave the site vulnerable.
" + }, + { + "name": "Permissions Policy Header Not Set", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.
" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "A timestamp was disclosed by the application/web server - Unix
" + }, + { + "name": "X-Content-Type-Options Header Missing", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.
" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).
" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.
" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.
" + }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.
" + }, + { + "name": "Retrieved from Cache", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "The content was retrieved from a shared cache. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
" + }, + { + "name": "Sec-Fetch-Dest Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.
" + }, + { + "name": "Sec-Fetch-Mode Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.
" + }, + { + "name": "Sec-Fetch-Site Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Specifies the relationship between request initiator's origin and target's origin.
" + }, + { + "name": "Sec-Fetch-User Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "Specifies if a navigation request was initiated by a user.
" + }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.
" + } + ] + } + ] + }, + "nuclei": [], + "lhr": [ + { + "requestedUrl": "https://www.multi.coop/", + "finalUrl": "https://www.multi.coop/", + "fetchTime": "2023-10-31T15:56:23.884Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.711189079284668 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.86 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.83 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 9652, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 5326, + "firstMeaningfulPaint": 5326, + "largestContentfulPaint": 7962, + "interactive": 9652, + "speedIndex": 5326, + "totalBlockingTime": 1313, + "maxPotentialFID": 672, + "cumulativeLayoutShift": 0.5008818584018283, + "cumulativeLayoutShiftMainFrame": 0.5008818584018283, + "totalCumulativeLayoutShift": 0.5008818584018283, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 336086036, + "observedNavigationStart": 0, + "observedNavigationStartTs": 336086036, + "observedFirstPaint": 818, + "observedFirstPaintTs": 336903688, + "observedFirstContentfulPaint": 818, + "observedFirstContentfulPaintTs": 336903688, + "observedFirstContentfulPaintAllFrames": 818, + "observedFirstContentfulPaintAllFramesTs": 336903688, + "observedFirstMeaningfulPaint": 818, + "observedFirstMeaningfulPaintTs": 336903688, + "observedLargestContentfulPaint": 943, + "observedLargestContentfulPaintTs": 337028850, + "observedLargestContentfulPaintAllFrames": 943, + "observedLargestContentfulPaintAllFramesTs": 337028850, + "observedTraceEnd": 3331, + "observedTraceEndTs": 339416575, + "observedLoad": 576, + "observedLoadTs": 336661860, + "observedDomContentLoaded": 547, + "observedDomContentLoadedTs": 336633477, + "observedCumulativeLayoutShift": 0.5008818584018283, + "observedCumulativeLayoutShiftMainFrame": 0.5008818584018283, + "observedTotalCumulativeLayoutShift": 0.5008818584018283, + "observedFirstVisualChange": 817, + "observedFirstVisualChangeTs": 336903036, + "observedLastVisualChange": 1417, + "observedLastVisualChangeTs": 337503036, + "observedSpeedIndex": 911, + "observedSpeedIndexTs": 336997353 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 39, + "numScripts": 8, + "numStylesheets": 1, + "numFonts": 1, + "numTasks": 726, + "numTasksOver10ms": 13, + "numTasksOver25ms": 7, + "numTasksOver50ms": 2, + "numTasksOver100ms": 2, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 107539633.25086617, + "maxRtt": 89.31600000000002, + "maxServerLatency": 29.741999999999948, + "totalByteWeight": 2562777, + "totalTaskTime": 745.9090000000056, + "mainDocumentTransferSize": 1080 + } + ] + } + } + } + } + ], + "screenshot": true, + "stats": null, + "github_repository": null, + "budget_page": null, + "declaration-a11y": { + "mention": null + }, + "declaration-rgpd": null, + "betagouv": null, + "ecoindex": [ + { + "width": 1920, + "height": 1080, + "url": "https://www.multi.coop", + "size": 4426.375, + "nodes": 433, + "requests": 41, + "grade": "C", + "score": 59, + "ges": 1.82, + "water": 2.73, + "ecoindex_version": "5.4.2", + "date": "2023-10-31 15:53:59.529252", + "page_type": null + } + ], + "sonarcloud": null, + "summary": { + "404": "A+", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-01-05T12:20:00.000Z", + "testsslGrade": "A+", + "cookiesGrade": "A", + "cookiesCount": 0, + "trackersGrade": "F", + "trackersCount": 32, + "lighthouse_performance": 0.711189079284668, + "lighthouse_performanceGrade": "B", + "lighthouse_accessibility": 0.86, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.83, + "lighthouse_seoGrade": "B", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", + "declaration-a11y": "F", + "ecoindexGrade": "C" + } + } +] \ No newline at end of file