indexo.dev

credemeuromobiliarepb.it

.it crawl

First seen 2026-05-28 · Last seen 2026-05-31 · ok HTTP/1.1 200 573 ms crawled 2026-05-31

IE · 54.76.9.176 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Credem Euromobiliare Private Banking
Language
it
Canonical
https://www.credemeuromobiliarepb.it/it/
Translations
  • en
  • it

Open Graph

url
https://www.credemeuromobiliarepb.it/it/
title
Credem Euromobiliare Private Banking

Technology

Stack
ASP.NET
Cookie consent
  • Iubenda

Third-party hosts loaded (2)

  • cdn.iubenda.com×1
  • video.milanofinanza.it×1

Social

Contact

Phone

DNS records live

NS
  • dns1.inet2.it
  • dns2.inet2.it
  • dns3.inet2.it
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 8 TXT records
  • _xmgqc3bwdxfns7c4c3hpgwheefupyth
  • swlynf20gk4c4frz21vysrk96hbnw139
  • hrqnt2c24yfdgpwl3dt92d6gzzmpc0pq
  • _pz3cmx8tqozb5uepx6zjbjmi88fkcc0
  • _j540fmdqn45d7q691b667pqnaqbnv81
  • 7s1cjr228z2rmblryvhp2zv78v9xnrkd
  • 6zxdncfwjtqh03fytltbzrvh181fjcvs
  • ztn3m3xpc5vhr7l0k85h3x2z05df9vrf
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:_spf.gruppocredem.it include:_spf.google.com include:fdspfeuc.freshemail.io include:145150219.spf01.hubspotemail.net ip4:156.54.138.184 -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:dmarc-fb@gruppocredem.it; ruf=mailto:dmarc-fi@gruppocredem.it
policy: reject (enforced)
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJEsMSfJijPlbbUOquMDWN+nSWt0QP4gKunspSf3obJDKwp+CQiisMYVoXHUDGuyXFTSuaEQGxp6nsEBnMbx…
selectors probed

Certificate (current)

Amazon RSA 2048 M02
from 2025-07-23 to 2026-08-22
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://credemeuromobiliarepb.it/it/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'unsafe-inline' 'unsafe-eval' 'self' http://localhost:* https://maps.googleapis.com https://maps.gstatic.com *.spreaker.com *.google-analytics.com *.iubenda.com https://js-eu1.hs-scripts.com https://js-eu1.hs-banner.com https://js-eu1.hscollectedforms.net https://js-eu1.hs-analytics.net; object-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com;
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (4)

Linked from (1)