Summary
A Concise Overview of the scan result of url https://haveibeenpwned.com/
- Document
- HTML
- 4
- StyleSheets
- 3
- Scripts
- 8
- Font
- 0
- Images
- 19
- Links
- 9
- JavaScript Variables
- 40
- Console log messages
- 0
- Network
- Requests
- 39
- Bytes Transferred
- 503.09KB
- Bytes Total
- 1.15MB
- DNS Record
- A Record
- 2
- AAAA Record
- 2
- Technology
- UI frameworks
- 1
- Payment processors
- 1
- Documentation
- 1
- Issue trackers
- 1
- Live chat
- 1
- 2
- Security
- 3
- JavaScript libraries
- 1
- CDN
- 2
- Analytics
- 1
- RUM
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
https://twitter.com/haveibeenpwned | |
https://www.facebook.com/haveibeenpwned/ | |
https://infosec.exchange/@haveibeenpwned | Mastodon |
https://haveibeenpwned.uservoice.com/ | Suggest a feature |
http://feeds.feedburner.com/HaveIBeenPwnedLatestBreaches | Breaches |
https://1password.com/haveibeenpwned/ | Step 2 Enable 2 factor authentication and store the codes inside your 1Password account. |
https://1password.com/haveibeenpwned | 1Password password manager |
https://www.facebook.com/haveibeenpwned | |
https://www.troyhunt.com/contact/ |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Documentation | ||
Zendesk | Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities. | Type: dns Regex: mail\.zendesk\.com |
Analytics | ||
Cloudflare Browser Insights | Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users. | Type: scriptSrc Regex: static\.cloudflareinsights\.com\/beacon(?:\.min)?\.js |
Issue trackers | ||
Zendesk | Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities. | Type: dns Regex: mail\.zendesk\.com |
Security | ||
reCAPTCHA | reCAPTCHA is a free service from Google that helps protect websites from spam and abuse. | Type: scriptSrc Regex: \/recaptcha\/(?:api|enterprise)\.js |
Keybase | Keybase is for keeping everyone's chats and files safe, from families to communities to companies. MacOS, Windows, Linux, iPhone, and Android. | Type: dns Regex: keybase-site-verification |
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
CDN | ||
cdnjs | cdnjs is a free distributed JS library delivery service. | Type: scriptSrc Regex: cdnjs\.cloudflare\.com |
Cloudflare | Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services. | Dependent on cdnjs |
Payment processors | ||
PayPal | PayPal is an online payments system that supports online money transfers and serves as an electronic alternative to traditional paper methods like checks and money orders. | Type: headers Name: content-security-policy Regex: \.paypal\.com |
Live chat | ||
Zendesk | Zendesk is a cloud-based help desk management solution offering customizable tools to build customer service portal, knowledge base and online communities. | Type: dns Regex: mail\.zendesk\.com |
JavaScript libraries | ||
jQuery | jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax. | Type: scriptSrc Regex: jquery |
UI frameworks | ||
Bootstrap | Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components. | Type: html Regex: <link[^>]{0,250} href=[^>]{0,250}?bootstrap(?:[^>]{0,250}?([0-9a-fA-F]{7,40}|[\d]{1,250}(?:.[\d]{1,250}(?:.[\d]{1,250})?)?)|)[^>-]{0,250}?(?:\.min)?\.css |
Sendgrid | SendGrid is a cloud-based email delivery platform for transactional and marketing emails. | Type: dns Regex: sendgrid\.net |
Mailgun | Mailgun is a transactional email API service for developers. | Type: dns Regex: mailgun\.org |
RUM | ||
Cloudflare Browser Insights | Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users. | Type: scriptSrc Regex: static\.cloudflareinsights\.com\/beacon(?:\.min)?\.js |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 27 msGood
- requestTime
- 41 msGood
- dom
- 680 msPoor
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
A | haveibeenpwned.com | 104.16.123.33 | yes |
A | haveibeenpwned.com | 104.16.124.33 | yes |
AAAA | haveibeenpwned.com | 2606:4700::6810:7c21 | yes |
AAAA | haveibeenpwned.com | 2606:4700::6810:7b21 | yes |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
haveibeenpwned.com E6 | 9/3/2024 | 12/2/2024 | 2 months 29 days |
cdnjs.cloudflare.com WE1 | 7/31/2024 | 10/29/2024 | 2 months 29 days |
logos.haveibeenpwned.com WE1 | 8/21/2024 | 11/19/2024 | 3 months |
www.google.com WR2 | 8/5/2024 | 10/28/2024 | 2 months 23 days |
cloudflareinsights.com WE1 | 9/3/2024 | 12/2/2024 | 2 months 29 days |
*.vo.msecnd.net DigiCert SHA2 Secure Server CA | 6/6/2024 | 6/6/2025 | 1 year |
*.gstatic.com WR2 | 8/5/2024 | 10/28/2024 | 2 months 23 days |
challenges.cloudflare.com WE1 | 9/5/2024 | 12/4/2024 | 3 months |
prod.ai.ingestion.msftcloudes.com Microsoft Azure RSA TLS Issuing CA 04 | 6/25/2024 | 6/20/2025 | 12 months |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
access-control-expose-headers | Request-Context |
age | 1454 |
cache-control | public, max-age=3584 |
cf-cache-status | HIT |
cf-ray | 8bec08439ab069ea-MAD |
content-encoding | br |
content-security-policy | default-src 'none';script-src 'self' 'nonce-MJaV2tZy02Mx9gW94pf6' www.google.com www.gstatic.com cdnjs.cloudflare.com az416426.vo.msecnd.net ajax.cloudflare.com challenges.cloudflare.com static.cloudflareinsights.com;style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com;img-src 'self' www.gstatic.com translate.google.com logos.haveibeenpwned.com;font-src 'self' cdnjs.cloudflare.com fonts.gstatic.com;connect-src 'self' api.pwnedpasswords.com stats.g.doubleclick.net dc.services.visualstudio.com;base-uri 'self';child-src www.google.com challenges.cloudflare.com;form-action 'self' accounts.google.com www.paypal.com billing.stripe.com checkout.stripe.com billing.haveibeenpwned.com;frame-ancestors 'none';worker-src 'self';upgrade-insecure-requests;report-uri https://troyhunt.report-uri.com/r/d/csp/enforce |
content-type | text/html; charset=utf-8 |
date | Fri, 06 Sep 2024 05:24:21 GMT |
expires | Fri, 06 Sep 2024 05:52:08 GMT |
last-modified | Fri, 06 Sep 2024 04:52:08 GMT |
referrer-policy | strict-origin-when-cross-origin |
request-context | appId=cid-v1:3665810e-aab5-4aa5-90b9-f46c41b757ec |
server | cloudflare |
strict-transport-security | max-age=31536000; includeSubDomains; preload |
vary | *, Accept-Encoding |
x-content-type-options | nosniff |
x-frame-options | DENY |
x-xss-protection | 1; mode=block |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|---|
default-src | 'none';script-src'self''nonce-MJaV2tZy02Mx9gW94pf6'www.google.comwww.gstatic.comcdnjs.cloudflare.comaz416426.vo.msecnd.netajax.cloudflare.comchallenges.cloudflare.comstatic.cloudflareinsights.com;style-src'self''unsafe-inline'cdnjs.cloudflare.com;img-src'self'www.gstatic.comtranslate.google.comlogos.haveibeenpwned.com;font-src'self'cdnjs.cloudflare.comfonts.gstatic.com;connect-src'self'api.pwnedpasswords.comstats.g.doubleclick.netdc.services.visualstudio.com;base-uri'self';child-srcwww.google.comchallenges.cloudflare.com;form-action'self'accounts.google.comwww.paypal.combilling.stripe.comcheckout.stripe.combilling.haveibeenpwned.com;frame-ancestors'none';worker-src'self';upgrade-insecure-requests;report-urihttps://troyhunt.report-uri.com/r/d/csp/enforc |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
__cf_bm | R3_UE.cZ1beCNxn_VXteMCkeG.rtDTmZshC_zwJ1AiU-1725600261-1.0.1.1-V7kc24kxHLfcSoG07MxI0O6gTUc9nfzgbQ3QIjVM3B1G8fCxtnCMC1syxpRXlX5EM1pE09J5LNpA093Rl9JMlQ | .haveibeenpwned.com/ | 9/6/2024, 5:54:21 AM | yes | yes |
ai_user | 5C9n8|2024-09-06T05:24:22.054Z | haveibeenpwned.com/ | 9/6/2025, 5:24:22 AM | yes | no |
ai_session | zpPib|1725600262736.7|1725600262736.7 | haveibeenpwned.com/ | 9/6/2024, 5:54:22 AM | yes | no |