bs-energy.de

HTML metadata

Title: Stromanbieter & Gasanbieter aus Braunschweig - BS|ENERGY
Description: BS|ENERGY bietet als Strom- und Gasanbieter günstige Preise für Privat- und Geschäftskunden und engagiert sich als Stadtwerk in der Region Braunschweig.
Language: de
Generator: WordPress 6.9.4
Canonical: https://www.bs-energy.de/

Open Graph

url: https://www.bs-energy.de/
title: Stromanbieter & Gasanbieter aus Braunschweig - BS|ENERGY
locale: de_DE
site name: BS|ENERGY
description: BS|ENERGY bietet als Strom- und Gasanbieter günstige Preise für Privat- und Geschäftskunden und engagiert sich als Stadtwerk in der Region Braunschweig.

Technology

Server: nginx
CMS: WordPress

Third-party hosts loaded (1)

cdn.eye-able.com×2

Social

Registration

Updated

2025-07-12

Name servers

ns-1497.awsdns-59.org.
ns-159.awsdns-19.com.
ns-1741.awsdns-25.co.uk.
ns-640.awsdns-16.net.

DNS records live

NS

ns-1497.awsdns-59.org
ns-159.awsdns-19.com
ns-1741.awsdns-25.co.uk
ns-640.awsdns-16.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

7UjMQZoPGnnXqcUOQmN2QwcXZp8gs5tYBuaQX7oqr54dMuoVtVVD/FPCAOgUJPuVEndnSTUoj+Lg4PFpKYSQ3Q==

Verified for

Apple
Atlassian
DocuSign
Google
Meta
Microsoft 365
TeamViewer

Email authentication strong

SPF

v=spf1 include:spf.hornetsecurity.com include:_spf.cmail.ondemand.com include:_spf.google.com include:spf.mailjet.com include:spf-a.bs-energy.de a:otc-de-spf.mms.t-systems-service.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:pfavnw3o@ag.us.dmarcian.com; ruf=mailto:pfavnw3o@fr.us.dmarcian.com

policy: quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApb++rMP2mtLPBV2mtMViL0gRlATNEST5Igx/+Vx/NYPZFE+UpkNWqtgstxx1f+ClTZDo+RaDod3PfM…
mail: v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxQ0MglCxuqpEiizrUvQs+ITyNqHJTc1t0jNP35NYjEICbZrcCJodhD9oAtGN5DLK8jW…

selectors probed

Certificate (current)

Starfield Secure Certificate Authority - G2

from 2025-10-17 to 2026-11-11

Expires in 175 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.bs-energy.de/

present

strict-transport-security
content-security-policy
permissions-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
content-security-policy: default-src 'self' *.bs-energy.de *.bs-netz.de *.se-bs.de *.stadtentwaesserung-braunschweig.de *.kom-dia.de *.energiebuendel-online.de api.friendlycaptcha.com bsenergy.matomo.cloud endpoint-app.cognigy.ai wss: maps.googleapis.com translate.eye-able.com api.digiaccess.org *.selfservices.bs-energy.de;script-src 'self' 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval' *.bs-energy.de *.bs-netz.de *.se-bs.de *.stadtentwaesserung-braunschweig.de *.kom-dia.de *.energiebuendel-online.de unpkg.com bsenergy.matomo.cloud cdn.matomo.cloud *.eye-able.com maps.google.com maps.googleapis.com download.digiaccess.org ptxj4g5qtm.eu-central-1.awsapprunner.com xihv4ecj4h.eu-central-1.awsapprunner.com advisor.senercon.de embed.journey.epilot.io;script-src-attr 'self' 'unsafe-hashes' 'unsafe-eval' 'unsafe-inline' *.bs-energy.de *.bs-netz.de *.se-bs.de *.stadtentwaesserung-braunschweig.de *.kom-dia.de *.energiebuendel-online.de;style-src 'self' 'unsafe-inline' 'unsafe-hashes' *.bs-energy.de *.bs-netz.de *.se-bs.
strict-transport-security: max-age=2628000; includeSubDomains; preload, max-age=63072000; includeSubDomains; preload