indexo.dev

dab-bank.de

.de crawl

First seen 2026-04-13 · Last seen 2026-05-09 · ok HTTP/1.1 200 4189 ms crawled 2026-05-05

DE · 23.55.163.153 · AS20940 Akamai International B.V.

Reputation 100/100

Classifying

HTML metadata

Title
DAB BNP Paribas
Description
DAB BNP Paribas - Erste Wahl für Vermögensverwalter und FinTechs
Language
de

Registration

Updated
2024-11-13
Name servers
  • ns1.bnpparibas.com.
  • ns2.bnpparibas.com.
  • ns3.domivesta.net.
  • ns4.domivesta.com.

DNS records live

NS
  • ns1.bnpparibas.com
  • ns2.bnpparibas.com
  • ns3.domivesta.net
  • ns4.domivesta.com
MX
  • 5 smtp-in-internet-usr-m.gslb.srv.bnpparibas
TXT
Show 11 TXT records
  • MS=ms45639069
  • zscaler-verification-242570-28082025-rpIs9t
  • _s3ytr32ow68j38g3kmoyszl9z1cn5b0
  • v=spf1 a:mailrelay1fra.is-teledata.com a:mailrelay2fra.is-teledata.com ip4:62.146.188.74 ip4:62.146.188.75 include:consorsbank.de mx -all
  • _wz1dyquma0eyykkh6kgtgm0t390e9lq
  • _yvp8iecpenq66akyur2whru09kvfetp
  • _eesl6bfi8k4di9ingk4b09hvv9pngu3
  • DF45-6284-AEAF-D694-D7C4-F4CA-A1BC-4663
  • _95ryj7nzt0z3duqxgqy56mbx4eq8ot4
  • _4r5ry8descudg8rrircx19f229lx2g0
  • _r1at1dxcd4i3gjyb7y3bd1rs2zks23j

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1
from 2026-03-10 to 2026-09-25
Expires in 128 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://dab-bank.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(), camera=(self), display-capture=*,encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), hid=(), identity-credentials-get=(), idle-detection=(), local-fonts=(), magnetometer=(self), microphone=(self), midi=(self), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' *.dab-bank.de https://*.dab-bank.de intent://consors.com https://*.optimizely.com;script-src 'self' *.dab-bank.de https://*.dab-bank.de https://*.adac.de https://*.twitter.com https://*.google.com https://*.bootstrapcdn.com https://*.ensighten.com https://*.googleapis.com https://*.akamaihd.net https://*.tlscdn.com https://*.cloudfront.net https://*.google-analytics.com https://*.akamai.net https://*.dab-partnerprogramm.de https://*.zanox.com https://*.intelliad.de https://*.netrk.net https://*.optimizely.com https://*.amazonaws.com https://*.googleadservices.com https://*.webmasterplan.com https://*.neqty.net https://*.gstatic.com https://*.doubleclick.net https://*.adform.net https://*.vid.ly https://*.googleusercontent.com *.mdgms.com https://*.rexx-server.com *.boerse-frankfurt.de *.volkswagenbank.de https://*.facebook.com https://*.facebook.net 'unsafe-inline' 'unsafe-eval';img-src 'self' *.dab-bank.de https://*.dab-bank.de https://*.adac.de https://*.bootstra
strict-transport-security
max-age=86400; includeSubDomains

Linked from (3)