indexo.dev

contehockeyshop.ch

.ch crawl

First seen 2026-05-29 · Last seen 2026-06-01 · ok HTTP/1.1 200 367 ms crawled 2026-05-31

US · 172.67.70.82 · AS13335 Cloudflare, Inc.

Reputation 79/100 weak security headers spf without fallback no dmarc policy

Classifying

HTML metadata

Title
Conte Hockey Shop | Conte Hockey Shop
Description
Der Conte Hockeyshop ist 24/7 für dich da! Deine Hockey Ausrüstung ist nur wenige Klicks entfernt. Adresse. TFS TUNED FOR SPORTS AG Ringstrasse ...
Language
de

Technology

CDN
Cloudflare
CMS
Gatsby
PHP
8.1.34 end of life
Stack
PHP
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • scontent-fra3-1.cdninstagram.com×5
  • scontent-fra3-2.cdninstagram.com×5
  • scontent-fra5-2.cdninstagram.com×4
  • fonts.googleapis.com×2
  • scontent-fra5-1.cdninstagram.com×2
  • chimpstatic.com×1
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • kay.ns.cloudflare.com
  • kolton.ns.cloudflare.com
MX
  • 10 mx1.mail.hostpoint.ch
  • 10 mx2.mail.hostpoint.ch
TXT
  • domainVerification=956e6e0a-f315-40d2-9535-c070f4cf40f0

Email authentication weak

SPF
v=spf1 redirect=spf-permissive.mail.hostpoint.ch
missing all
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-12 to 2026-07-11
Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://contehockeyshop.ch/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src *.googleapis.com *.gstatic.com *.fontawesome.com maxcdn.bootstrapcdn.com *.tawk.to fonts.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cardinalcommerce.com *.paypal.com test.saferpay.com www.saferpay.com saferpay.com *.tawk.to *.facebook.com 'self' 'unsafe-inline'; frame-ancestors www.gstatic.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ c.paypal.com checkout.paypal.

Links to (3)

Linked from (4)