indexo.dev

auwa.de

.de crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 865 ms crawled 2026-06-02

DE · 176.52.240.72 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 100/100

Classifying

HTML metadata

Title
AUWA
Language
de
Canonical
https://www.auwa.de/
Translations
  • de ×2
  • en ×2
  • es
  • fr
  • it
  • nl
  • pl
  • pt

Technology

Server
Apache
Analytics
  • Google Analytics
  • Google Tag Manager
Ads
  • Meta Pixel
Third-party hosts loaded (10)
  • cloud.ccm19.de×2
  • www.googletagmanager.com×2
  • connect.facebook.net×1
  • vod.streambuzzer.com×1
  • www.auwa.es×1
  • www.auwa.fr×1
  • www.auwa.it×1
  • www.auwa.nl×1
  • www.google-analytics.com×1
  • www.gstatic.com×1

Social

Contact

Address
Argonstraße 7, 86153, Augsburg, DE

Registration

Updated
2023-10-21
Name servers
  • ns1.nic53.net.
  • ns2.nic53.de.

DNS records live

NS
  • ns1.nic53.net
  • ns2.nic53.de
MX
  • 10 d337576a.ess.barracudanetworks.com
  • 20 d337576b.ess.barracudanetworks.com
TXT
  • deepl-domain-verification=14b9346870da4540bdd5c3a5e056c4a9
  • sending_domain1127153=599022a86f32354e1c94fb413cc603a6914cb85a12d9ed07f3f1023825832695
Verified for
  • DocuSign
  • TeamViewer

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:spf.washtec.com include:servers.mcsv.net include:_spf.salesforce.com a:mx3.imc-hosting.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc+aggregated@reports.nicmanager.net;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3SKF8OP1POYfi1+s8ZaQ/yMrKnKNWiN+PLJrRGDlWozN3L8dkDFjgdrSJy0dcQUg6O+p16BnxhU50V…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

R13
from 2026-05-11 to 2026-08-09
Expires in 65 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.auwa.de/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
sameorigin
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-eval' 'unsafe-inline' *.intuit.com *.amazonaws.com chimpstatic.com *.mailchimp.com *.piwik.pro *.cloudfront.net *.streambuzzer.com *.doubleclick.net *.linkedin.com *.google-analytics.com *.licdn.com www.youtube.com www.youtube.com/iframe_api *.ccm19.de *.googleapis.com *.google.com *.googletagmanager.com *.gstatic.com *.facebook.net *.facebook.com *.google.de *.salesforce.com washtec.sharepoint.com; font-src 'self' data: *.piwik.pro *.cloudfront.net *.streambuzzer.com *.doubleclick.net *.linkedin.com *.google-analytics.com *.licdn.com www.youtube.com www.youtube.com/iframe_api *.ccm19.de *.googleapis.com *.google.com *.googletagmanager.com *.gstatic.com *.facebook.net *.facebook.com *.google.de; script-src 'self' 'unsafe-inline' blob: *.intuit.com *.amazonaws.com chimpstatic.com *.mailchimp.com *.markvii.net *.crazyegg.com *.leadforensics.com *.zi-scripts.com *.piwik.pro *.google.bg *.googleadservices.com *.hs-scripts.com *.hscollectedforms.net *.hs-ana

Links to (7)

Linked from (1)