indexo.dev

avima.se

.se crawl

First seen 2026-05-30 · Last seen 2026-06-01 · ok HTTP/1.1 200 169 ms crawled 2026-05-31

SE · 193.235.35.4 · AS8473 Bahnhof AB

Reputation 100/100

Classifying

HTML metadata

Title
Bygg bättre tillsammans | Avima
Description
Avima är en komplett lösning som effektiviserar byggprojekt, anläggningsprojekt och infrastrukturprojekt genom att erbjuda kraftfullt stöd för samarbete mellan olika aktörer.
Language
sv
Canonical
https://avima.se/
Translations
  • en
  • sv

Open Graph

url
https://avima.se/
title
Bygg bättre tillsammans
site name
iBinder
description
Avima är en komplett lösning som effektiviserar byggprojekt, anläggningsprojekt och infrastrukturprojekt genom att erbjuda kraftfullt stöd för samarbete mellan olika aktörer.

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns53.domaincontrol.com
  • ns54.domaincontrol.com
MX
  • 10 avima-se.mail.protection.outlook.com
TXT
  • sending_domain911842=7190a304617dfb01fa53a706458d82d4094a264e361feb4804cbb8661fb3b848
Verified for
  • Atlassian
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:security@avima.se
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-28 to 2026-07-27
Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://avima.se/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self' data: 'unsafe-inline' 'unsafe-eval' via.placeholder.com *.linkedin.com *.posthog.com *.licdn.com *.google.com *.gstatic.com *.googleapis.com *.google-analytics.com *.msecnd.net *.youtube.com *.vimeo.com *.amazonaws.com *.vimeocdn.com *.cdn.net *.facebook.net *.facebook.com *.umbraco.org *.umbraco.com *.googletagmanager.com *.pardot.com *.reachmee.com *.e-space.se jumoo.co.uk *.clarity.ms *.google.se *.b-cdn.net *.ibinder.com *.akamaihd.net *.wistia.com *.hotjar.com *.pingdom.net *.doubleclick.net *.ytimg.com *.mynewsdesk.com *.leadoo.com *.bing.com *.segment.com *.github.com *.teamwalnut.com *.cognitoforms.com *.cookiebot.com *.googleadservices.com about: blob:; connect-src 'self' ws://*.com ws://*.se *.bing.net *.posthog.com *.akamaihd.net *.wistia.com *.litix.io *.google-analytics.com *.visualstudio.com *.pingdom.net *.umbraco.org *.umbraco.com *.doubleclick.net *.leadoo.com *.oribi.io *.bing.com *.google.com *.clarity.ms *.hotjar.io *.hotjar.com *.googlesyndicatio
strict-transport-security
max-age=31536000

Links to (7)

Linked from (1)