astendo.de

HTML metadata

Title

astendo GmbH

Description

Willkommen bei astendo! CRM ✔ Teilnehmermanagement ✔ Warenwirtschaft (ERP) ✔ IT-Service ✔ Schulungen ✔

Language

de

Canonical

https://https://www.astendo.de/

Feeds

RSS RSS
ATOM RSS

Open Graph

url: https://https://www.astendo.de/
title: astendo GmbH
locale: de_DE
site name: astendo GmbH
description: Willkommen bei astendo! CRM ✔ Teilnehmermanagement ✔ Warenwirtschaft (ERP) ✔ IT-Service ✔ Schulungen ✔

Technology

Server: nginx

Social widgets

Vimeo Embed

Third-party hosts loaded (2)

https×1
player.vimeo.com×1

Social

Contact

Email

Phone

Address

astendo GmbHTop Tegel/Haus CWittestraße 3013509 Berlin

Registration

Updated

2022-02-11

Name servers

ns3.ip-projects.de.
ns4.ip-projects.de.

DNS records live

NS

ns3.ip-projects.de
ns4.ip-projects.de

MX

10 astendo-de.mail.protection.outlook.com

TXT

Show 8 TXT records

google-site-verification=kMwbbJXJDj3t_0hrzkHlGF7gNDkbwW96LiDNP9jmY5g
sendinblue-site-verification=2903113
brevo-code:f4223e12b0fae7f2b33e833b1dce58cd
apple-domain-verification=o73p6BQPiO66kUnD
MS=1E1CEBD4B672C50C6B702B35D79D8D301E4A3D32
linkedin-site-verification=2dcc043b-30fa-446b-bd41-246d3b790f17
Sendinblue-code:599024d3697fbc9078aeb4e26dce5f0b
MS=ms12139445

Email authentication strong

SPF

v=spf1 mx a:mail.astendo.de include:spf.protection.outlook.com include:spf.sendinblue.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:re+fulfkfplqoo@dmarc.postmarkapp.com; sp=none; aspf=r;

policy: quarantine · sp=none

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWB5dIhzxi40e5X9Pd0jf6nrq47lzgv92ZF316GPpZW81hmJ1WZtATMANg/105GD9D7MGNi0XTUUmA…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R12

from 2026-05-05 to 2026-08-03

Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.astendo.de/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'report-sample' ;script-src-elem 'self' 'report-sample' 'unsafe-inline' 'unsafe-eval' https://*.googleapis.com https://*.gstatic.com *.google.com https://*.ggpht.com *.googleusercontent.com blob: https://www.sandbox.paypal.com https://www.paypal.com https://c.paypal.com https://www.paypalobjects.com https://centinelapi.cardinalcommerce.com https://s.provenexpert.net/seals/proseal-v2.js;script-src-attr 'self' 'report-sample' 'unsafe-inline' 'unsafe-eval' https://*.googleapis.com https://*.gstatic.com *.google.com https://*.ggpht.com *.googleusercontent.com blob: https://www.sandbox.paypal.com https://www.paypal.com https://c.paypal.com https://www.paypalobjects.com https://centinelapi.cardinalcommerce.com ;style-src-elem 'self' 'report-sample' 'unsafe-inline' https://fonts.googleapis.com ;style-src-attr 'self' 'report-sample' 'unsafe-inline' https://fonts.googleapis.com ;img-src 'self' 'report-sample' data: blo
strict-transport-security: max-age=15768000; IncludeSubdomains; preload
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: same-site
content-security-policy-report-only: report-to ReportCspViolations; report-uri /eventmanager-system/ReportCspViolations.php