coreum.de

.de crawl

First seen 2026-04-20 · Last seen 2026-05-13 · ok HTTP/1.1 200 2047 ms crawled 2026-05-13

DE · 185.88.214.221 · AS47447 23M GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Coreum - Deine Welt der Möglichkeiten
Description: Plattform für Bau, Materialumschlag & Recycling - mit Akademie, Ausstellung, Eventlocation & mehr! Erlebe Technik, teste Maschinen, veranstalte Events & übernachte direkt vor Ort!
Language: de

Technology

Server: Apache
CMS: Gatsby

Analytics

Google Tag Manager

Cookie consent

Usercentrics

Social widgets

YouTube Embed

Third-party hosts loaded (5)

app.usercentrics.eu×1
apps.elfsight.com×1
www.facebook.com×1
www.googletagmanager.com×1
www.youtube-nocookie.com×1

Social

Contact

Email

Phone

Registration

Updated

2018-05-30

Name servers

ns.udag.de.
ns.udag.net.
ns.udag.org.

DNS records live

NS

ns.udag.de
ns.udag.net
ns.udag.org

MX

10 coreum-de.mail.protection.outlook.com

TXT

Show 5 TXT records

bw=JOPmYajoGq8qFHRy5Dfh4USHguW1j231Xc7qMuUPo8x8
d365mktkey=h1rRWx0P7DhZc8W9xLFWbi8X54mpS9M0dbuiItCWhVcx
MS=ms18973467
y5XIS1Y7I/rEtJD7H53ZK1ujuxhMqRDGTwjouE//+qpPRqv4zvUyYzXISAuI6TTkGv8aO9MiqueEL42qIQLVCw==
google-site-verification=j0AzcCB8EB_n3Ro8guA37LBXeRZOoQrCkt_8VWEXY4s

Email authentication weak

SPF

v=spf1 mx include:spf.protection.outlook.com include:spf.nl2go.com include:spf.cloud.ci-solution.com include:kiesel.qualitus.net -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDT63Pwo7rzIpgYqeQ0IDDOQ0cGDRsz4wwV+ls3CsUyNGDAckFefD7yF6gqX5VK9lab8r05uGd1U+wC+49QdE…

selectors probed

Certificate (current)

from 2026-04-08 to 2026-07-07

Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.coreum.de/de

present

strict-transport-security
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing Content Security Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=*, ambient-light-sensor=*, autoplay=*, battery=*, camera=*, clipboard-read=*, clipboard-write=*, conversion-measurement=*, cross-origin-isolated=*, display-capture=*, document-domain=*, encrypted-media=*, execution-while-not-rendered=*, execution-while-out-of-viewport=*, focus-without-user-activation=*, fullscreen=*, geolocation=*, gyroscope=*, hid=*, idle-detection=*, layout-animations=*, legacy-image-formats=*, magnetometer=*, microphone=*, midi=*, navigation-override=*, payment=*, picture-in-picture=*, publickey-credentials-get=*, screen-wake-lock=*, serial=*, speaker-selection=*, sync-xhr=*, usb=*, web-share=*, xr-spatial-tracking=*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload