indexo.dev

digitas.de

.de crawl

First seen 2026-04-24 · Last seen 2026-05-18 · ok HTTP/1.1 200 8103 ms crawled 2026-05-18

US · 64.239.109.1 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Digitas.de – Digital Strategy for Real Business Impact
Description
Digitas delivers digital strategy that drives brand relevance, marketing effectiveness, and business growth—rooted in truth and real results.
Language
en

Open Graph

title
Digitas

Technology

CDN
Vercel
CMS
Nuxt
Cookie consent
  • OneTrust

Third-party hosts loaded (2)

  • a.storyblok.com×12
  • cdn.cookielaw.org×2

Registration

Updated
2019-03-20
Name servers
  • ns1.publicisgroupe.com.
  • ns3.publicisgroupe.com.
  • ns5.publicisgroupe.com.

DNS records live

NS
  • ns1.publicisgroupe.com
  • ns3.publicisgroupe.com
  • ns5.publicisgroupe.com
MX
  • 0 digitas-de.mail.protection.outlook.com
TXT
Show 4 TXT records
  • google-site-verification=YCukwQ8pr4WamuB9nlKIaqIEzxFwYsniOLNfWRLdlqQ
  • MS=ms42008690
  • rovag_verification_token=F0E2F8B7C50D4A4E8D04542CBDE0FBD4
  • F0E2F8B7C50D4A4E8D04542CBDE0FBD4

Email authentication weak

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-03-23 to 2026-06-21
Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.digitas.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
fullscreen=self
x-content-type-options
nosniff
content-security-policy
base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self' https://app.storyblok.com; img-src 'self' https://a.storyblok.com https://forms-eu1.hsforms.com https://track-eu1.hubspot.com https://px.ads.linkedin.com https://www.googletagmanager.com https://cdn.cookielaw.org data:; object-src 'none'; script-src-attr 'unsafe-hashes' 'sha256-bwK6T5wZVTANitXbrTsel7kl/PyCjCd/Dq5Qoz3imjM='; style-src 'self' https: 'unsafe-inline'; script-src 'self' https://vercel.live https://app.storyblok.com https://www.googletagmanager.com https://js.hs-scripts.com https://js-eu1.hs-scripts.com https://js-eu1.hsadspixel.net https://js-eu1.hs-banner.com https://js-eu1.hscollectedforms.net https://js-eu1.hs-analytics.net https://www.clarity.ms https://snap.licdn.com https://va.vercel-scripts.com https://cdn.sitebrunch.com https://cdn.cookielaw.org https://privacyportal-cdn.onetrust.com 'wasm-unsafe-eval' 'unsafe-inline' data: 'sha256-1G/8mj8othPys/HcZk9OY53OL/tDBoR7ciT4DYbXwd0='
strict-transport-security
max-age=15552000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
credentialless
cross-origin-resource-policy
cross-origin

Linked from (2)