indexo.dev

burg-services.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-08 · ok HTTP/1.1 200 4485 ms crawled 2026-05-08

FR · 176.28.49.201 · AS8972 Host Europe GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Startseite Burg | BURG Services GmbH & Co. KG
Language
de
Generator
Drupal 10 (https://www.drupal.org)
Canonical
https://www.burg-services.de/

Technology

Server
Apache
CMS
Drupal

Social

Contact

Phone

Registration

Updated
2021-11-17
Name servers
  • ns09.domaincontrol.com.
  • ns10.domaincontrol.com.

DNS records live

NS
  • ns09.domaincontrol.com
  • ns10.domaincontrol.com
MX
  • 0 burgservices-de01b.mail.protection.outlook.com

Email authentication weak

SPF
v=spf1 ip4:87.138.209.243 include:spf.protection.outlook.com include:secureserver.net -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-03-20 to 2026-06-18
Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.burg-services.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
child-src 'self'; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://www.google-analytics.com https://www.googletagmanager.com; frame-src *; media-src 'self' https://www.youtube.com https://die6.de https://youtu.be; object-src 'self'; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://*.google-analytics.com https://*.googletagmanager.com cdn.jsdelivr.net cdnjs.cloudflare.com code.jquery.com https://cdn.ckeditor.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://maps.googleapis.com https://unpkg.com https://www.gstatic.com; script-src-attr 'self'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.google-analytics.com https://*.google-analytics.com cdn.jsdelivr.net cdnjs.cloudflare.com code.jquery.com https://cdn.ckeditor.com https://cdn.jsde
strict-transport-security
max-age=1000; includeSubDomains; preload

Links to (7)

Linked from (2)