update: https://www.elysee.fr

dnum-mi · Sep 22, 2024 · bc259ac · bc259ac
1 parent f10e1f1
commit bc259ac
Show file tree

Hide file tree

Showing 10 changed files with 1,884 additions and 1,875 deletions.
diff --git a/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/ecoindex.json b/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/ecoindex.json
@@ -3,15 +3,15 @@
         "width": 1920,
         "height": 1080,
         "url": "https://www.elysee.fr",
-        "size": 7278.016,
-        "nodes": 1091,
+        "size": 7586.471,
+        "nodes": 1101,
         "requests": 28,
         "grade": "D",
         "score": 41.0,
         "ges": 2.18,
         "water": 3.27,
         "ecoindex_version": "5.4.2",
-        "date": "2024-09-15 00:57:27.814034",
+        "date": "2024-09-22 00:57:22.967811",
         "page_type": null
     }
 ]
diff --git a/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/http.json b/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/http.json
@@ -1 +1 @@
-{"url":"https://www.elysee.fr","algorithm_version":3,"end_time":"Sun, 15 Sep 2024 01:00:50 GMT","grade":"B+","hidden":false,"likelihood_indicator":"MEDIUM","response_headers":{"Age":"355","CF-Cache-Status":"HIT","CF-RAY":"8c34ae905ff6c3e9-SEA","Cache-Control":"public, max-age=900, must-revalidate, s-maxage=900, stale-while-revalidate=600","Connection":"keep-alive","Content-Encoding":"gzip","Content-Security-Policy":"upgrade-insecure-requests","Content-Security-Policy-Report-Only":"default-src 'self' https:; base-uri https://www.elysee.fr; block-all-mixed-content; child-src *; font-src 'self' data: https://fonts.gstatic.com https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr; form-action 'self'; frame-ancestors 'none'; img-src https://stats.g.doubleclick.net data: https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr https://captcha.liveidentity.com; plugin-types video/*; script-src 'unsafe-inline' https://www.elysee.fr https://isho.elysee.fr https://admin.elysee.fr https://www.elysee.fr; style-src https://fonts.googleapis.com 'unsafe-inline' https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr","Content-Type":"text/html; charset=UTF-8","Date":"Sun, 15 Sep 2024 01:00:48 GMT","Last-Modified":"Sun, 15 Sep 2024 00:54:33 GMT","Referrer-Policy":"no-referrer, strict-origin-when-cross-origin","Server":"cloudflare","Strict-Transport-Security":"max-age=31536000; includeSubDomains","Transfer-Encoding":"chunked","Vary":"Accept-Encoding","X-Content-Security-Policy":"upgrade-insecure-requests","X-Content-Security-Policy-Report-Only":"default-src 'self' https:; base-uri https://www.elysee.fr; block-all-mixed-content; child-src *; font-src 'self' data: https://fonts.gstatic.com https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr; form-action 'self'; frame-ancestors 'none'; img-src https://stats.g.doubleclick.net data: https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr https://captcha.liveidentity.com; plugin-types video/*; script-src 'unsafe-inline' https://www.elysee.fr https://isho.elysee.fr https://admin.elysee.fr https://www.elysee.fr; style-src https://fonts.googleapis.com 'unsafe-inline' https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr","X-Content-Type-Options":"nosniff","X-Frame-Options":"DENY","X-XSS-Protection":"1; mode=block"},"scan_id":55644310,"score":80,"start_time":"Sun, 15 Sep 2024 01:00:47 GMT","state":"FINISHED","status_code":200,"tests_failed":1,"tests_passed":9,"tests_quantity":10,"details":{"content-security-policy":{"expectation":"csp-implemented-with-no-unsafe","name":"content-security-policy","output":{"data":{"upgrade-insecure-requests":["'none'"]},"http":true,"meta":false,"numPolicies":1,"policy":{"antiClickjacking":false,"defaultNone":false,"insecureBaseUri":true,"insecureFormAction":true,"insecureSchemeActive":false,"insecureSchemePassive":false,"strictDynamic":false,"unsafeEval":false,"unsafeInline":true,"unsafeInlineStyle":true,"unsafeObjects":true}},"pass":false,"result":"csp-implemented-with-unsafe-inline","score_description":"Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.","score_modifier":-20},"cookies":{"expectation":"cookies-secure-with-httponly-sessions","name":"cookies","output":{"data":null,"sameSite":null},"pass":true,"result":"cookies-not-found","score_description":"No cookies detected","score_modifier":0},"cross-origin-resource-sharing":{"expectation":"cross-origin-resource-sharing-not-implemented","name":"cross-origin-resource-sharing","output":{"data":{"acao":null,"clientaccesspolicy":null,"crossdomain":null}},"pass":true,"result":"cross-origin-resource-sharing-not-implemented","score_description":"Content is not visible via cross-origin resource sharing (CORS) files or headers","score_modifier":0},"redirection":{"expectation":"redirection-to-https","name":"redirection","output":{"destination":"https://www.elysee.fr/","redirects":true,"route":["http://www.elysee.fr/","https://www.elysee.fr/"],"status_code":200},"pass":true,"result":"redirection-to-https","score_description":"Initial redirection is to HTTPS on same host, final destination is HTTPS","score_modifier":0},"referrer-policy":{"expectation":"referrer-policy-private","name":"referrer-policy","output":{"data":"no-referrer, strict-origin-when-cross-origin","http":true,"meta":false},"pass":true,"result":"referrer-policy-private","score_description":"Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"","score_modifier":5},"strict-transport-security":{"expectation":"hsts-implemented-max-age-at-least-six-months","name":"strict-transport-security","output":{"data":"max-age=31536000; includeSubDomains","includeSubDomains":true,"max-age":31536000,"preload":false,"preloaded":false},"pass":true,"result":"hsts-implemented-max-age-at-least-six-months","score_description":"HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)","score_modifier":0},"subresource-integrity":{"expectation":"sri-implemented-and-external-scripts-loaded-securely","name":"subresource-integrity","output":{"data":{}},"pass":true,"result":"sri-not-implemented-but-all-scripts-loaded-from-secure-origin","score_description":"Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin","score_modifier":0},"x-content-type-options":{"expectation":"x-content-type-options-nosniff","name":"x-content-type-options","output":{"data":"nosniff"},"pass":true,"result":"x-content-type-options-nosniff","score_description":"X-Content-Type-Options header set to \"nosniff\"","score_modifier":0},"x-frame-options":{"expectation":"x-frame-options-sameorigin-or-deny","name":"x-frame-options","output":{"data":"DENY"},"pass":true,"result":"x-frame-options-sameorigin-or-deny","score_description":"X-Frame-Options (XFO) header set to SAMEORIGIN or DENY","score_modifier":0},"x-xss-protection":{"expectation":"x-xss-protection-disabled","name":"x-xss-protection","output":{"data":"1; mode=block"},"pass":true,"result":"x-xss-protection-enabled-mode-block","score_description":"Deprecated X-XSS-Protection header set to \"1; mode=block\"","score_modifier":0}}}
+{"url":"https://www.elysee.fr","algorithm_version":3,"end_time":"Sun, 22 Sep 2024 01:00:16 GMT","grade":"B+","hidden":false,"likelihood_indicator":"MEDIUM","response_headers":{"Age":"0","CF-Cache-Status":"HIT","CF-RAY":"8c6e5b569bc7d45b-SEA","Cache-Control":"public, max-age=900, must-revalidate, s-maxage=900, stale-while-revalidate=600","Connection":"keep-alive","Content-Encoding":"gzip","Content-Security-Policy":"upgrade-insecure-requests","Content-Security-Policy-Report-Only":"default-src 'self' https:; base-uri https://www.elysee.fr; block-all-mixed-content; child-src *; font-src 'self' data: https://fonts.gstatic.com https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr; form-action 'self'; frame-ancestors 'none'; img-src https://stats.g.doubleclick.net data: https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr https://captcha.liveidentity.com; plugin-types video/*; script-src 'unsafe-inline' https://www.elysee.fr https://isho.elysee.fr https://admin.elysee.fr https://www.elysee.fr; style-src https://fonts.googleapis.com 'unsafe-inline' https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr","Content-Type":"text/html; charset=UTF-8","Date":"Sun, 22 Sep 2024 01:00:13 GMT","Last-Modified":"Sun, 22 Sep 2024 01:00:11 GMT","Referrer-Policy":"no-referrer, strict-origin-when-cross-origin","Server":"cloudflare","Strict-Transport-Security":"max-age=31536000; includeSubDomains","Transfer-Encoding":"chunked","Vary":"Accept-Encoding","X-Content-Security-Policy":"upgrade-insecure-requests","X-Content-Security-Policy-Report-Only":"default-src 'self' https:; base-uri https://www.elysee.fr; block-all-mixed-content; child-src *; font-src 'self' data: https://fonts.gstatic.com https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr; form-action 'self'; frame-ancestors 'none'; img-src https://stats.g.doubleclick.net data: https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr https://captcha.liveidentity.com; plugin-types video/*; script-src 'unsafe-inline' https://www.elysee.fr https://isho.elysee.fr https://admin.elysee.fr https://www.elysee.fr; style-src https://fonts.googleapis.com 'unsafe-inline' https://www.elysee.fr https://admin.elysee.fr https://www.elysee.fr","X-Content-Type-Options":"nosniff","X-Frame-Options":"DENY","X-XSS-Protection":"1; mode=block"},"scan_id":55930145,"score":80,"start_time":"Sun, 22 Sep 2024 01:00:12 GMT","state":"FINISHED","status_code":200,"tests_failed":1,"tests_passed":9,"tests_quantity":10,"details":{"content-security-policy":{"expectation":"csp-implemented-with-no-unsafe","name":"content-security-policy","output":{"data":{"upgrade-insecure-requests":["'none'"]},"http":true,"meta":false,"numPolicies":1,"policy":{"antiClickjacking":false,"defaultNone":false,"insecureBaseUri":true,"insecureFormAction":true,"insecureSchemeActive":false,"insecureSchemePassive":false,"strictDynamic":false,"unsafeEval":false,"unsafeInline":true,"unsafeInlineStyle":true,"unsafeObjects":true}},"pass":false,"result":"csp-implemented-with-unsafe-inline","score_description":"Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.","score_modifier":-20},"cookies":{"expectation":"cookies-secure-with-httponly-sessions","name":"cookies","output":{"data":null,"sameSite":null},"pass":true,"result":"cookies-not-found","score_description":"No cookies detected","score_modifier":0},"cross-origin-resource-sharing":{"expectation":"cross-origin-resource-sharing-not-implemented","name":"cross-origin-resource-sharing","output":{"data":{"acao":null,"clientaccesspolicy":null,"crossdomain":null}},"pass":true,"result":"cross-origin-resource-sharing-not-implemented","score_description":"Content is not visible via cross-origin resource sharing (CORS) files or headers","score_modifier":0},"redirection":{"expectation":"redirection-to-https","name":"redirection","output":{"destination":"https://www.elysee.fr/","redirects":true,"route":["http://www.elysee.fr/","https://www.elysee.fr/"],"status_code":200},"pass":true,"result":"redirection-to-https","score_description":"Initial redirection is to HTTPS on same host, final destination is HTTPS","score_modifier":0},"referrer-policy":{"expectation":"referrer-policy-private","name":"referrer-policy","output":{"data":"no-referrer, strict-origin-when-cross-origin","http":true,"meta":false},"pass":true,"result":"referrer-policy-private","score_description":"Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"","score_modifier":5},"strict-transport-security":{"expectation":"hsts-implemented-max-age-at-least-six-months","name":"strict-transport-security","output":{"data":"max-age=31536000; includeSubDomains","includeSubDomains":true,"max-age":31536000,"preload":false,"preloaded":false},"pass":true,"result":"hsts-implemented-max-age-at-least-six-months","score_description":"HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)","score_modifier":0},"subresource-integrity":{"expectation":"sri-implemented-and-external-scripts-loaded-securely","name":"subresource-integrity","output":{"data":{}},"pass":true,"result":"sri-not-implemented-but-all-scripts-loaded-from-secure-origin","score_description":"Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin","score_modifier":0},"x-content-type-options":{"expectation":"x-content-type-options-nosniff","name":"x-content-type-options","output":{"data":"nosniff"},"pass":true,"result":"x-content-type-options-nosniff","score_description":"X-Content-Type-Options header set to \"nosniff\"","score_modifier":0},"x-frame-options":{"expectation":"x-frame-options-sameorigin-or-deny","name":"x-frame-options","output":{"data":"DENY"},"pass":true,"result":"x-frame-options-sameorigin-or-deny","score_description":"X-Frame-Options (XFO) header set to SAMEORIGIN or DENY","score_modifier":0},"x-xss-protection":{"expectation":"x-xss-protection-disabled","name":"x-xss-protection","output":{"data":"1; mode=block"},"pass":true,"result":"x-xss-protection-enabled-mode-block","score_description":"Deprecated X-XSS-Protection header set to \"1; mode=block\"","score_modifier":0}}}
diff --git a/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/lhr-aHR0cHM6Ly93d3cuZWx5c2VlLmZyLw==.html b/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/lhr-aHR0cHM6Ly93d3cuZWx5c2VlLmZyLw==.html
diff --git a/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/lhr.json b/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/lhr.json
diff --git a/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/nuclei.json b/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/nuclei.json
diff --git a/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/screenshot.jpeg b/results/aHR0cHM6Ly93d3cuZWx5c2VlLmZy/screenshot.jpeg