indexo.dev

corneronline.ch

.ch crawl

First seen 2026-05-21 · Last seen 2026-05-27 · ok HTTP/1.1 200 3745 ms crawled 2026-05-27

CH · 194.11.207.191 · AS6730 Sunrise GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Cornèr Bank | Cornèronline | CH | Switzerland | ebanking | login
Description
Cornèronline: the e-Banking service of Cornèr Bank Ltd - Switzerland
Language
en

Technology

Server
Apache
CMS
Gatsby
jQuery
3.5.1

DNS records live

NS
  • drns-bp.itsrv.plus
  • drns-bp.itsrv.tech
  • drns-sp.itsrv.plus
  • drns-sp.itsrv.tech
  • ns-bp.itsrv.plus
  • ns-bp.itsrv.tech
  • ns-sp.itsrv.plus
  • ns-sp.itsrv.tech
MX
  • 20 mail-relay01.itsrv.plus
  • 20 mail-relay01.itsrv.tech
  • 20 mail-relay02.itsrv.plus
  • 20 mail-relay02.itsrv.tech
TXT
Show 8 TXT records
  • d63pr7gy0m01ykjfwq9yk171gkj9tswg
  • swisssign-check=SdUxpOKHpOXqTwpUEFv3Fh6ariscML0wUZQN6RvQWA
  • RuPiow_PQUYxJuA3FMuGIoezfAI
  • vIRqeSMN7SD1A7H8uW0suTVF5E
  • swisssign-check=_Ytr_jwwP0qza7-fwpaWZ_OYXa4
  • swisssign-check=v7TzqF16KYITkvKC20tqudKYXVg
  • swisssign-check=NL0meq22SHSJVDmd82IUw0Pu2TA
  • swisssign-check=-vIRqeSMN7SD1A7H8uW0suTVF5E
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:itsrv.tech -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; aspf=s; adkim=s; fo=0; pct=100; rua=mailto:dmarc-rua@itsrv.tech; ruf=mailto:dmarc-ruf@itsrv.tech
policy: none (monitoring only) · sp=none
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1
from 2026-03-03 to 2026-09-18
Expires in 109 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.corneronline.ch/secure/?login

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' https://*.corneronline.ch; style-src 'self' 'unsafe-inline'; frame-ancestors 'none'; block-all-mixed-content;
strict-transport-security
max-age=63072000; includeSubDomains

Links to (2)

Linked from (2)