indexo.dev

bcge.ch

.ch crawl

First seen 2026-05-12 · Last seen 2026-05-18 · ok HTTP/1.1 200 2771 ms crawled 2026-05-18

CH · 193.222.70.28 · AS3303 Bluewin

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
BCGE | Banque Cantonale de Genève Pour particuliers et entreprises
Description
The Swiss bank of Geneva (BCGE) aims to contribute to the development of Geneva and of the region by offering competitive banking services
Language
en-US

Technology

Server
Apache
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×2
  • cdn.cookielaw.org×1
  • www.google.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
Banque Cantonale de GenèveQuai de l'Ile 17 - P.O. Box 22511211 Geneva 2Tel: +41 58 211 21 00Fax: +41 58 211 21 46

DNS records live

NS
  • dns1.swisscom.com
  • dns2.swisscom.com
  • dns3.swisscom.com
MX
  • 10 mail.swisscom.com
  • 20 mail10.swisscom.com
  • 30 mail20.swisscom.com
TXT
Show 6 TXT records
  • MS=244C52B8521A3A02B8C0F8C8D31D877BF2EDDEE5
  • atlassian-domain-verification=WXk61APdftGBap/KQE4osAWkhzrhMCYaFlTxxLDjHlser7PtUJpLL98aSs0AcIS0
  • apple-domain-verification=ie4c7L9Wr7qjhuTX
  • swisssign-check=ZSlvXYh4b8wrK6tNO8-JzvCxKkA
  • swisssign-check=Yd4eNljJllp3KrGusOxZR6t-OqY
  • swisssign-check=fXmJ7hAH6UC4qRg6W4Z9f-c5vLE

Email authentication partial

SPF
v=spf1 include:spf.swisscom.com ip4:51.254.189.37 -all
strict (-all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:reports-rua@bcge.ch; ruf=mailto:reports-ruf@bcge.ch;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

DigiCert EV RSA CA G2
from 2026-02-05 to 2027-02-05
Expires in 261 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.bcge.ch/en/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), camera=(self), display-capture=(self), document-domain=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self), xr-spatial-tracking=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://googleads.g.doubleclick.net/ https://cdn.cookielaw.org/scripttemplates/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.googletagmanager.com https://www.google-analytics.com https://ssl.google-analytics.com https://*.googleapis.com https://*.gstatic.com ; img-src 'self' https://www.google.ch/pagead/ https://www.google.ch/ads/ https://ad.doubleclick.net/ https://cdn.cookielaw.org/ https://*.googleapis.com https://*.gstatic.com https://*.google-analytics.com https://*.googletagmanager.com data:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; connect-src 'self' https://cdn.cookielaw.org/ https://www.jobup.ch https://*.googleapis.com https://*.gstatic.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://privacyportal-ch.onetrust.com/request/v1/consentreceipts https://www.google.com/recaptcha/ https://www.google.com/cc
strict-transport-security
max-age=31536000

Links to (6)

Linked from (2)