bildungswerk.at

.at crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 1324 ms crawled 2026-05-30

AT · 81.223.232.151 · AS8412 T-Mobile Austria GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Home / Katholisches Bildungswerk Wien
Language: de

Technology

Server: Apache
PHP: 8.2.8 security-only
Stack: PHP

Contact

Email

Phone

51 552-3320

DNS records live

NS

ns1.lxcluster.at
ns2.lxcluster.at
ns3.lxcluster.at

MX

0 bildungswerk-at.mail.protection.outlook.com

Verified for

Google
Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com mx ip4:81.223.232.0/24 -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfgY9HGGxBJi+/N61TDw8nk+2ydDda4kB+VDWX/lfVZrMM4rVC90iwzui9ucv42TN/8SWe34sLvUNq…

selectors probed

Certificate (current)

from 2026-05-09 to 2026-08-07

Expires in 68 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.bildungswerk.at/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: media-src * blob: 'unsafe-eval' 'unsafe-inline'; connect-src * blob: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubdomains;, max-age=15768000