Summary of api-qa2.enphaseenergy.com [Desktop version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:Apr 14th, 2020 12:21 GMT+0
Server IP:35.169.159.106
Reverse DNS:ec2-35-169-159-106.compute-1.amazonaws.com
Location:Ashburn, United States
Version:for desktop
Your final score:
- A
- B
- C
- F
B+
This test was made 2178 days ago and may be outdated
Refresh Test
Executive Summary for api-qa2.enphaseenergy.com
- 3 third-party web software dependancies were identified, including 2 outdated dependancies. No known vulnerabilities were detected. No Content Management System (CMS) was identified. The following CMS components, JS-libraries or frameworks were identified: html5shiv, json2, timezone-js. Show details.
- Potential GDPR compliance issues were identified related to Cookie Protection, Cookie Disclaimer. Show details.
- Issues were identified with key security headers: missing Strict-Transport-Security, Content-Security-Policy, X-Frame-Options. Some optional HTTP headers may not be properly configured: Server, X-Powered-By. Deprecated HTTP headers detected: Public-Key-Pins, Public-Key-Pins-Report-Only, X-XSS-Protection. Show details.
- Content-Security-Policy headers are not present. Show details.
- 3 cookies detected; _mkra_ctxt, locale, _enlighten_4_session have security or privacy-related configuration issues. Show details.
- 11 external requests detected; all requests completed successfully. Show details.
- No significant anti-scraping protections were detected. Show details.
