dwpbank.de

HTML metadata

Title: Exzellente Wertpapierservices für Ihren Erfolg | dwpbank
Description: Die dwpbank ist der führende Dienstleister für Wertpapierservices in Deutschland. Gestalten Sie mit uns das Wertpapiergeschäft der Zukunft.
Language: de
Generator: Elementor 4.0.7; features: additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-swap
Canonical: https://www.dwpbank.de/

Open Graph

url: https://www.dwpbank.de/
title: dwpbank (DE)
locale: de_DE
site name: dwpbank
description: Die Deutsche WertpapierService Bank AG (dwpbank) ist der führende Dienstleister für Wertpapierservices in Deutschland. Unsere Produkte und Services machen den Handel mit Wertpapieren sicher und zuverlässig.

Technology

Server: nginx
CMS: WordPress

Fonts

Font Awesome

Third-party hosts loaded (2)

use.fontawesome.com×2
gmpg.org×1

Social

Registration

Updated

2015-07-28

Name servers

ns1.izb.net.
ns2.izb.net.

DNS records live

NS

ns1.izb.net
ns2.izb.net

MX

10 pmx.dwpbank.de

TXT

Show 5 TXT records

atlassian-domain-verification=24IcmsZmDSMJN0CSGTOl1JGzRU/wW09tlRpq2C9lpOsh9dZsmpQawHbPO9Rl6mt/
swisssign-check=ZjhcIcdyaDQU61PEY_AO5qhiID8
Sendinblue-code:c5445fb081358493d30d9a936d662b16
swisssign-check=rxi-qFHlhco8at6UxWNdmhW-tZg
_telesec-domain-validation=359585_2026-03-25_fOEfdXibd9cDQqjczBhUuZLj1aAZCP3msH5306JHtqW0wfC1dW

Email authentication strong

SPF

v=spf1 include:spf.sendinblue.com include:spf1.services-syntax.com include:f-i.de ip4:212.34.64.0/19 ip4:185.153.64.0/22 ip4:109.71.72.0/22 ip6:2a05:cc00::/29 mx -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=none; rua=mailto:dmarc@dwpbank.de!10m; ruf=mailto:dmarc@dwpbank.de!10m; rf=afrf; pct=100; ri=86400; aspf=r; adkim=r

policy: reject (enforced) · sp=none

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

DigiCert EV RSA CA G2

from 2025-05-07 to 2026-05-27

Expires in 8 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.dwpbank.de/

present

strict-transport-security
content-security-policy
x-frame-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
missing content type protection

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: fullscreen=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"), picture-in-picture=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"), autoplay=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"), encrypted-media=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"), accelerometer=(), camera=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()
content-security-policy: default-src 'self'; script-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' https://cdnjs.cloudflare.com https://yoast.com https://www.youtube.com https://player.podigee-cdn.net/ https://cdn.jsdelivr.net/; style-src 'report-sample' 'self' 'unsafe-inline' https://fonts.googleapis.com https://player.podigee-cdn.net/ https://use.fontawesome.com/; object-src 'none'; base-uri 'self'; connect-src 'self' https://my.yoast.com; font-src 'self' https://fonts.gstatic.com/ https://use.fontawesome.com/ data:; frame-src 'self' blob: https://dwpbank.softgarden.io https://www.youtube-nocookie.com https://www.youtube.com/ https://maps.google.com/ https://www.google.com/ https://player.vimeo.com/ https://i.vimeocdn.com/ https://w.soundcloud.com/ https://player.podigee-cdn.net/; img-src 'self' data: https://i.ytimg.com https://www.kununu.com; manifest-src 'self'; media-src 'self'; worker-src 'self' blob:;
strict-transport-security: max-age=31536000; includeSubDomains