Summary of evernote.com [Desktop version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:May 1st, 2025 11:16 GMT+0
Server IP:34.98.96.201
Reverse DNS:201.96.98.34.bc.googleusercontent.com
Location:Kansas City, United States
Version:for desktop
Your final score:
- A
- B
- C
- F
A
This test was made 337 days ago and may be outdated
Refresh Test
Executive Summary for evernote.com
- 2 third-party web software dependancies were identified. All appear to be outdated, but no known vulnerabilities were detected. No Content Management System (CMS) was identified. The following CMS components, JS-libraries or frameworks were identified: next.js, react. Show details.
- No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. The following checks were not performed, as no corresponding cookies with personal or tracking information seem to be sent by the website: Cookie Protection, Cookie Disclaimer. Show details.
- The website is compliant with PCI DSS Requirement 6.3, while being non-compliant with Requirement 6.4. Show details.
- Issues were identified with key security headers: missing Strict-Transport-Security, X-Frame-Options; misconfigured Content-Security-Policy. Optional HTTP headers appear to be properly configured: X-Powered-By, Referrer-Policy, Cache-Control, X-Permitted-Cross-Domain-Policies. Show details.
- Content-Security-Policy is enforced but configuration issues were identified: directive errors, overly permissive directives. A report-only Content-Security-Policy is not present. Show details.
- No cookies were detected. Show details.
- 16 external requests detected; 1 request failed. SRI is not used for 8 third-party JavaScript and CSS files. Show details.
- No significant anti-scraping protections were detected. Show details.
- DNS A record detected; DNSSEC signatures are not present. Show details.
