bookgoodlook.at — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Friseur und Beautytermine online buchen - 50% sparen mit BookGoodLook
Description: Friseur und Beautytermine online buchen und 10% bis 50% in deinem Top Salon sparen. Salon finden, Bewertungen lesen und vergleichen.
Language: de-AT
Canonical: https://bookgoodlook.at/

Open Graph

url: https://bookgoodlook.at
title: Friseur und Beautytermine online buchen | 50% sparen mit BookGoodLook
site name: BookGoodLook
description: Friseur und Beautytermine online buchen und 10% bis 50% in deinem Top Salon sparen. Salon finden, Bewertungen lesen und vergleichen.

Technology

CDN: Cloudflare
Stack: Laravel

Analytics

Cloudflare Insights

Cookie consent

Iubenda

Third-party hosts loaded (3)

google.com×2
embeds.iubenda.com×1
static.cloudflareinsights.com×1

Social

DNS records live

NS

eloise.ns.cloudflare.com
nitin.ns.cloudflare.com

MX

10 mail.bookgoodlook.at

Email authentication partial

SPF: v=spf1 include:spf.protection.outlook.com include:sendgrid.net include:amazonses.com ~all
softfail (~all)
DMARC: v=DMARC1; p=none; rua=mailto:a55c2a231a3f40ed9a99765f1d6bb4bb@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

WE1

from 2026-04-17 to 2026-07-16

Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://bookgoodlook.at/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: geolocation=(), ambient-light-sensor=(), battery=(), navigation-override=(), camera=(), display-capture=(), keyboard-map=(self), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), usb=(), web-share=(self), speaker-selection=(), xr-spatial-tracking=(), gamepad=(), accelerometer=(self "https://www.youtube.com"), autoplay=(self "https://www.youtube.com"), encrypted-media=(self "https://www.youtube.com"), gyroscope=(self "https://www.youtube.com"), picture-in-picture=(self "https://www.youtube.com"), fullscreen=(self "https://www.youtube.com" "https://www.google.com")
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'; script-src 'nonce-pwVJ019M5RGsToDOXB8CM5YGivyRaM8cvk5hw0cH/no=' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https: http: 'report-sample' https://tagmanager.google.com https://*.googletagmanager.com https://*.facebook.com https://*.facebook.net https://*.sentry-cdn.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://pagead2.googlesyndication.com https://www.google.com https://ajax.cloudflare.com https://static.cloudflareinsights.com https://*.adyen.com https://*.getsitecontrol.com https://srv.isy-teamblue.services https://srv.motu-teamblue.services https://eu.acsbapp.com https://*.amplitude.com https://cdn.amplitude.com https://api.amplitude.com https://*.rudderlabs.com https://hosted.rudderlabs.com https://*.iubenda.com; script-src-elem 'nonce-pwVJ019M5RGsToDOXB8CM5YGivyRaM8cvk5hw0cH/no=' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https: http: 'report-sample' https://tagmanager.google.com https://*.googletagmanager.com https:/
strict-transport-security: max-age=0; includeSubDomains; preload
cross-origin-opener-policy: same-origin

Links to (5)

Linked from (1)

medicalskinspa.at×1