eex-transparency.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2675 ms crawled 2026-05-19

DE · 3.122.49.234 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: EEX-Transparency: Power
Language: en
Generator: TYPO3 CMS
Canonical: https://www.eex-transparency.com/power

Technology

Third-party hosts loaded (1)

static.etracker.com×1

Social

Contact

Email

support@eex-transparency.com

Phone

+49 341 2156 233

Registration

Registrar

Deutsche Telekom AG

Created

2013-11-29

Expires

2026-11-29 193 days left

Updated

2025-11-01

Name servers

a.dbgdns.de
a.dbgdns.lu
b.dbgdns.de
b.dbgdns.lu

DNS records live

NS

a.dbgdns.de
a.dbgdns.lu
b.dbgdns.de
b.dbgdns.lu

MX

0 mail16.deutsche-boerse.com
0 mail17.deutsche-boerse.com
100 mail14.clearstream.com
100 mail15.clearstream.com

TXT

MS=ms88177520
google-site-verification=Q6BR3ZLoMkiO2VaticBl7Xjf6tiiQhJ0qJfnWk-pvLw
google-site-verification=ZzHSslLw7uUo9OHDYqDEdRZ7iQtJLiMdhTR0tk2gJQI

Email authentication strong

SPF: v=spf1 mx include:dbgmail.net ip4:87.118.83.11 ip4:3.122.49.234 ip4:3.122.98.74 -all
strict (-all)
DMARC: v=DMARC1; p=reject; ruf=mailto:email.security@clearstream.com; fo=0
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

GlobalSign GCC R3 DV TLS CA 2020

from 2025-12-01 to 2027-01-02

Expires in 227 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.eex-transparency.com/power

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'report-sample'; script-src-elem 'self' 'unsafe-inline' https://*.etracker.com https://*.etracker.de 'report-sample'; connect-src 'self' https://api.eds.dev.fra.gcp.dbgservice.com https://api.eds.prod.fra.gcp.dbgservice.com https://api.eex-group.com/ https://*.etracker.com https://*.etracker.de; style-src-elem 'self' 'unsafe-inline' 'report-sample'; style-src-attr 'self' 'unsafe-inline' 'report-sample'; script-src-attr 'unsafe-hashes' 'unsafe-inline' 'report-sample'; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://datawrapper.dwcdn.net; report-uri https://www.eex-transparency.com/@http-reporting?csp=report&requestTime=1779148899444082&requestHash=6b60146166fba46465a6278e5fe7da4f3bd4167d
strict-transport-security: max-age=31536000; includeSubDomains;
content-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-eval' 'report-sample'; script-src-elem 'self' 'unsafe-inline' https://*.etracker.com https://*.etracker.de 'report-sample'; connect-src 'self' https://api.eds.dev.fra.gcp.dbgservice.com https://api.eds.prod.fra.gcp.dbgservice.com https://api.eex-group.com/ https://*.etracker.com https://*.etracker.de; style-src-elem 'self' 'unsafe-inline' 'report-sample'; style-src-attr 'self' 'unsafe-inline' 'report-sample'; script-src-attr 'unsafe-hashes' 'unsafe-inline' 'report-sample'; img-src 'self' data:; font-src 'self' data:; frame-src 'self' https://datawrapper.dwcdn.net; report-uri https://www.eex-transparency.com/@http-reporting?csp=report&requestTime=1779148899444082&requestHash=6b60146166fba46465a6278e5fe7da4f3bd4167d

Links to (13)

Linked from (5)