indexo.dev

aib-web.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-06 · ok HTTP/1.1 200 1821 ms crawled 2026-05-08

NL · 104.46.52.128 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Language
de

Technology

Server
nginx

Registration

Updated
2025-05-15
Name servers
  • dns010.treml-sturm.net.
  • dns020.treml-sturm.net.
  • dns030.treml-sturm.net.
  • dns040.treml-sturm.net.

DNS records live

NS
  • dns010.treml-sturm.net
  • dns020.treml-sturm.net
  • dns030.treml-sturm.net
  • dns040.treml-sturm.net
MX
  • 10 mail01.bund-verlag.de
  • 30 mail03.bund-verlag.de
Verified for
  • Google
  • Microsoft 365

Email authentication weak

SPF
v=spf1 mx include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-04 to 2026-08-02
Expires in 74 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://aib-web.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src * 'unsafe-inline' 'unsafe-eval' blob:; style-src * 'unsafe-inline'; img-src * data:; font-src *; connect-src *; frame-src *; object-src 'none'; frame-ancestors 'self'; base-uri 'self';
strict-transport-security
max-age=31536000; includeSubDomains

Links to (4)

Linked from (1)