bingold.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-19 · ok HTTP/1.1 200 1507 ms crawled 2026-05-13

DE · 185.243.135.144 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

BINGOLD | Einmalhandschuhe und Mehrweghandschuhe für Profis

Description

BINGOLD bietet Schutzhandschuhe für Profis: Ob Krankenpflege, Gebäudereinigung, Industrie, Handwerk oder Gaststätten, immer die ideale Lösung für jeden Anwendungsbereich. ► Jetzt informieren

Language

de-DE

Generator

TYPO3 CMS

Canonical

https://www.bingold.com/

Translations

de-de
en

Open Graph

author: BINGOLD GmbH + Co. KG
locale: de_DE
site name: BINGOLD GmbH + Co. KG

Technology

Server: Apache

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (3)

consent.cookiebot.com×1
www.googleoptimize.com×1
www.googletagmanager.com×1

Social

Contact

Email

info@bingold.com

Phone

Registration

Registrar

InterNetX GmbH

Created

1999-08-17

Expires

2026-08-17 89 days left

Updated

2025-08-18

Name servers

ns-de.1and1-dns.biz
ns-de.1and1-dns.com
ns-de.1and1-dns.de
ns-de.1and1-dns.org

DNS records live

NS

ns-de.1and1-dns.biz
ns-de.1and1-dns.com
ns-de.1and1-dns.de
ns-de.1and1-dns.org

MX

10 mail.deiss.de
20 mx00.kundenserver.de
21 mx01.kundenserver.de

TXT

v=verifydomain MS=5897119
google-site-verification=BSyMphzo2oLU47wpI4BII_Y__Pikzj8deF4aSjI5O68
ZOOM_verify_VwINGRajTqWOWs0ntAIz3A

Email authentication weak

SPF

v=spf1 mx include:spf.protection.outlook.com include:agenturserver.de include:_spf.rexx-suite.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzA2OFCaaEBu+k1ifML2yhMWQZG/gnu0pJkXUvwmBXkZDoNgyPfDBwjyr0Ws0MEEYjtY3G2ePKGCN+r…

selectors probed

Certificate (current)

R12

from 2026-03-31 to 2026-06-29

Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.bingold.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=*, camera=(), cross-origin-isolated=*, display-capture=(), encrypted-media=(), fullscreen=(), geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), hid=(), idle-detection=(), serial=(), window-management=()
x-content-type-options: nosniff
content-security-policy: default-src *.ddev.site *.leadinfo.com *.leadinfo.net *.visualwebsiteoptimizer.com *.google.com *.bing.com *.bing.net *.matomo.cloud *.cookiebot.com *.mercury.ai *.google-analytics.com *.gstatic.com *.googleapis.com *.mapbox.com *.g.doubleclick.net *.webspaceconfig.de *.bingold.com; frame-src *.youtube-nocookie.com *.doubleclick.net *.matomo.cloud *.cookiebot.com; style-src-elem 'self' 'unsafe-inline' *.mercury.ai *.googleapis.com *.mapbox.com; style-src 'self' 'unsafe-inline' *.webspaceconfig.de; img-src 'self' data: *.ytimg.com *.google.com *.bing.com *.visualwebsiteoptimizer.com *.bing.net *.google-analytics.com *.googletagmanager.com *.gstatic.com *.googleapis.com *.cookiebot.com *.webspaceconfig.de *.bingold.com; script-src 'unsafe-eval' 'self' 'unsafe-inline' 'unsafe-inline' *.cookiebot.com *.webspaceconfig.de *.googletagmanager.com *.google-analytics.com *.bingold.com; script-src-elem 'self' 'unsafe-inline' *.leadinfo.net *.youtube.com *.bing.com *.mercury.ai *.googleoptimize.co
strict-transport-security: max-age=31536000; includeSubDomains; preload