elbeflugzeugwerke.com

HTML metadata

Title

EFW: We equip. We convert. We maintain. Certified. All your Airbus aircraft. Worldwide. | Elbe Flugzeugwerke GmbH

Description

Based in Dresden. In the heart of Europe. At ten global sites. Delivering to the world.

Language

en

Generator

TYPO3 CMS

Canonical

https://www.elbeflugzeugwerke.com/en/

Translations

de
en

Open Graph

url: https://www.elbeflugzeugwerke.com/en/
title: EFW: We equip. We convert. We maintain. Certified. All your Airbus aircraft. Worldwide.
image:url: https://www.elbeflugzeugwerke.com/fileadmin/_processed_/b/0/csm_EFW-company-locations-germany-dresden_premisis_H230_2019Oct_a2c100b3b5.jpg
site name: Elbe Flugzeugwerke GmbH
description: Based in Dresden. In the heart of Europe. At ten global sites. Delivering to the world.

Technology

Server: Apache

Cookie consent

Usercentrics

Third-party hosts loaded (1)

app.usercentrics.eu×1

Social

Registration

Registrar

united-domains GmbH

Created

2016-01-22

Expires

2027-01-22 246 days left

Updated

2026-03-21

Name servers

ns.udag.de
ns.udag.net
ns.udag.org

DNS records live

NS

ns.udag.de
ns.udag.net
ns.udag.org

TXT

D-TRUST=IOIOBXYHD3ZUFZ8YZRVWUUZ
D-TRUST=IBMKST5MT3BFNND5J3LRDGD

Verified for

Google

Email authentication no MX

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=reject; adkim=s; aspf=s; fo=1; rua=mailto:4z8gw3pr@ag.eu.dmarcadvisor.com,mailto:rua.dmarc.reporting@efw.aero; ruf=mailto:ruf.dmarc.reporting@efw.aero

policy: reject (enforced) · sp=reject

DKIM

Show 12 DKIM selectors

default: v=DKIM1;p=
google: v=DKIM1;p=
selector1: v=DKIM1;p=
selector2: v=DKIM1;p=
k1: v=DKIM1;p=
k2: v=DKIM1;p=
mail: v=DKIM1;p=
dkim: v=DKIM1;p=
s1: v=DKIM1;p=
s2: v=DKIM1;p=
mxvault: v=DKIM1;p=
smtpapi: v=DKIM1;p=

selectors probed

Certificate (current)

D-TRUST BR CA 1-20-2 2020

from 2026-04-07 to 2026-10-22

Expires in 155 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.elbeflugzeugwerke.com/en/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://*.elbeflugzeugwerke.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.usercentrics.eu https://*.google.com https://*.dvinci-easy.com https://www.gstatic.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://*.elbeflugzeugwerke.com https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://*.usercentrics.eu https://*.dvinci-easy.com; base-uri 'none'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com blob: https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://*.youtube.com/ https://*.google.com/ https://*.dvinci-easy.com; object-src 'none'; script-src-elem 'self' 'unsafe-inline' https://*.elbeflugzeugwerke.com https://*.google-analytics.com https://*.analytics.google.com https://*.goo
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy-report-only: default-src 'self' https://*.elbeflugzeugwerke.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.usercentrics.eu https://*.google.com https://*.dvinci-easy.com https://www.gstatic.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://*.elbeflugzeugwerke.com https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://*.usercentrics.eu https://*.dvinci-easy.com; base-uri 'none'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com blob: https://*.googletagmanager.com https://*.google-analytics.com https://*.analytics.google.com https://*.youtube.com/ https://*.google.com/ https://*.dvinci-easy.com; object-src 'none'; script-src-elem 'self' 'unsafe-inline' https://*.elbeflugzeugwerke.com https://*.google-analytics.com https://*.analytics.google.com https://*.goo

Links to (6)

Linked from (2)

team-challenge-dresden.de×2
dscvolley.de×1