pentest-tools.com Review
pentest-tools.com Review
| Titletag | Descriptiontag | language |
|---|
| Pentesting & vulnerability assessment toolkit - Pentest-Tools.com | |
English |
| Ip adress | 76.76.21.21 | Nameserver | aragorn.ns.cloudflare.com
kristin.ns.cloudflare.com |
Status code | 200 |
robots.txt
N/A
HTTP/1.0 308 Permanent Redirect
Content-Type: text/plain
Location: https://pentest-tools.com/
Refresh: 0;url=https://pentest-tools.com/
server: Vercel
HTTP/1.0 200 OK
Age: 0
Cache-Control: public, max-age=0, must-revalidate
Content-Encoding: br
Content-Security-Policy: base-uri 'self'; font-src 'self' data: https://*.pentest-tools.com https://vercel.live https://fonts.gstatic.com https://script.hotjar.com https://assets.vercel.com self; form-action 'self' https://*.pentest-tools.com; frame-ancestors 'self' https://*.pentest-tools.com https://*.vercel.app https://pentesttools.onfastspring.com https://*.cloudfront.net; img-src 'self' https: data: https://*.pentest-tools.com https://pentesttools.onfastspring.com https://*.google-analytics.com https://googletagmanager.com https://*.googletagmanager.com https://*.analytics.google.com https://*.google.com https://ssl.gstatic.com https://www.gstatic.com https://*.g.doubleclick.net https://googleads.g.doubleclick.net https://google.com https://static.hotjar.com https://script.hotjar.com https://*.onfastspring.com self cdn-cookieyes.com self https://*.posthog.com; object-src none; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://*.pentest-tools.com https://*.googletagmanager.com https://vercel.live/fonts https://fonts.googleapis.com https://googletagmanager.com https://tagmanager.google.com https://static.hotjar.com https://script.hotjar.com https://*.onfastspring.com self unsafe-inline; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.pentest-tools.com https://*.bing.net https://*.bing.com https://*.bing-int.com https://*.posthog.com https://cdn.jsdelivr.net/npm/workbox-cdn@5.1.4/workbox/workbox-sw.js https://cdn.jsdelivr.net/npm/workbox-cdn@5.1.4/workbox/workbox-core.prod.js https://cdn.jsdelivr.net/npm/workbox-cdn@5.1.4/workbox/workbox-precaching.prod.js https://cdn.jsdelivr.net/npm/workbox-cdn@5.1.4/workbox/workbox-strategies.prod.js https://cdn.jsdelivr.net/npm/workbox-cdn@5.1.4/workbox/workbox-routing.prod.js https://www.google.com https://*.googletagmanager.com https://*.google-analytics.com https://*.google.com https://*.googleadservices.com https://*.adservice.google.com https://adservice.google.com https://tagmanager.google.com https://googleads.g.doubleclick.net https://*.doubleclick.net https://www.googleadservices.com https://*.googlesyndication.com https://static.hotjar.com https://script.hotjar.com https://vercel.live https://cdn.vercel-insights.com https://va.vercel-scripts.com https://*.sentry.com https://*.sentry-cdn.com https://*.onfastspring.com https://*.cloudfront.net https://*.hs-scripts.com https://js.hubspotfeedback.com/feedbackweb-new.js https://js.hubspot.com https://*.usemessages.com https://*.hs-analytics.net https://*.hscollectedforms.net https://*.hs-banner.com https://*.usefathom.com https://*.debugbear.com self unsafe-inline self cdn-cookieyes.com unsafe-inline self https://*.posthog.com; upgrade-insecure-requests; default-src 'self' https://*.pentest-tools.com self; worker-src 'self' blob:; connect-src 'self' ws: wss: https://*.pentest-tools.com https://*.bing.net https://*.bing.com https://*.bing-int.com https://ptt.eu-central-1.linodeobjects.com https://content.pentest-tools.com https://google-analytics.com https://*.google-analytics.com https://googletagmanager.com https://*.googletagmanager.com https://stats.g.doubleclick.net https://googleadservices.com https://*.googleadservices.com https://www.google.co.in https://www.google.co.id https://www.google.com https://analytics.google.com https://adservice.google.com https://*.google.com https://google.com https://www.google.id https://www.google.com.br https://www.google.co.uk https://www.google.ca https://www.google.com.au https://www.google.ro https://*.analytics.google.com https://*.g.doubleclick.net https://*.googlesyndication.com https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://vitals.vercel-insights.com https://vitals.vercel-analytics.com https://vercel.live https://*.sentry.io https://*.onfastspring.com https://js.hs-banner.com https://*.hubspot.com https://api.hsforms.com https://*.hscollectedforms.net https://*.usefathom.com https://*.debugbear.com self unsafe-inline self *.cookieyes.com cdn-cookieyes.com https://*.posthog.com self; frame-src 'self' https://*.pentest-tools.com https://*.googletagmanager.com https://*.optimize.google.com https://*.youtube.com https://*.youtube-nocookie.com https://*.simplecast.com https://td.doubleclick.net https://vars.hotjar.com https://vercel.live https://*.onfastspring.com https://*.hubspot.com self https://*.posthog.com https://*.linkedin.com; report-uri https://o1040042.ingest.sentry.io/api/6008920/security/?sentry_key=ea284f2b974341f888d14e98a637f6e0&sentry_environment=production;
Content-Type: text/html;charset=utf-8
Cross-Origin-Opener-Policy: same-origin
Date: Mon, 25 Aug 2025 04:19:22 GMT
Origin-Agent-Cluster: ?1
Permissions-Policy: camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()
Referrer-Policy: no-referrer
Server: Vercel
Set-Cookie: ph-ssr-identify=170f3a44-d41c-4503-8d29-974a83527bde; Max-Age=31536000; Path=/
Set-Cookie: ph-feature-flags=%7B%22pricing-total-cost%22%3A%22control%22%2C%22base-tool-see-more-may%22%3A%22opened%22%2C%22tool-report-upsell%22%3A%22control%22%2C%22subdomain-finder-sample-report%22%3A%22control%22%2C%22pricing-features-bulletpoints%22%3A%22test%22%2C%22survey-targeting-40c80b9acb%22%3Afalse%2C%22survey-targeting-9241414bb6-custom%22%3Atrue%7D; Max-Age=604800; Path=/
Set-Cookie: ph-feature-flag-payloads=%7B%7D; Max-Age=604800; Path=/
Set-Cookie: firstpage=https%3A%2F%2Fwww.pentest-tools.com%2F; Domain=.pentest-tools.com; Path=/; Expires=Thu, 25 Sep 2025 04:19:21 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains;
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: off
X-Download-Options: noopen
X-Frame-Options: SAMEORIGIN
X-Nitro-Prerender: /api/_content/query/b900dSnN8J.1755858163746.json
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1
X-Vercel-Cache: MISS
X-Vercel-Id: hnd1::lhr1::fbvpk-1756095561189-8fff9b605ae6
X-Xss-Protection: 0