dcworkshop.dk

HTML metadata

Title: DC Workshop | DC Workshop
Language: da-DK
Canonical: https://dcworkshop.dk/

Open Graph

url: https://dcworkshop.dk/
site name: DC Workshop

Technology

CDN: Cloudflare
CMS: WordPress

Third-party hosts loaded (1)

app.scinvestment.dk×30

Contact

Phone

DNS records live

NS

ns1.simply.com
ns2.simply.com
ns3.simply.com
ns4.simply.com

MX

0 dcworkshop-dk.mail.protection.outlook.com

TXT

knowbe4-site-verification=5c391473f7bfc384eb794f7430e1326f

Verified for

Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:sendgrid.net include:spf.simply.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshu5uBfPvsvlW5bfAecwvnLy5kAw8ezRRTmRhepZLG+j3zIr0xCx34eZh4S0qYefm+1ZB5Uz6xBmJciL9R…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDd3T98E3XJJdeupxbTpVFlDX8GIufcOV6XOhbZKks2KiA5y7XRjvb4HSfNbnPKtPFOiHeYQWja7rm7NcYvYlkMsl…

selectors probed

Certificate (current)

WE1

from 2026-05-04 to 2026-08-02

Expires in 59 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://dcworkshop.dk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: interest-cohort=(), camera=(), microphone=(), geolocation=(), payment=()
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googletagmanager.com https://www.googletagmanager.com https://tagmanager.google.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://consentcdn.cookiebot.com https://consent.cookiebot.com https://assets.adoberesources.net https://documentcloud.adobe.com https://www.google-analytics.com https://ajax.cloudflare.com https://cdn.cloudflare.com https://*.europe-west1.firebasedatabase.app https://*.firebasedatabase.app https://connect.facebook.net https://cdn.trailhub.io https://diffuser-cdn.app-us1.com https://*.sleeknote.com https://prism.app-us1.com https://trackcmp.net https://web-sdk.smartlook.com https://snap.licdn.com https://static.karlachat.com;style-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://fonts.googleapis.com https://*.typekit.net;frame-ancestors 'self' https://app.flowmate.dk;frame-src 'self' https://www.googletagmanager.com ht
strict-transport-security: max-age=31536000; includeSubDomains