indexo.dev

eppgroup.eu

.eu crawl

First seen 2026-04-22 · Last seen 2026-05-17 · ok HTTP/1.1 200 4839 ms crawled 2026-05-16

BE · 136.173.161.115 · AS43375 European Parliament

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
EPP Group in the European Parliament
Description
The *EPP Group* is the largest and oldest group in the European Parliament. A centre-right group, we are committed to *creating a stronger and self-assured Europe*, built at the service of its people. Our goal is to create a *more competitive and democratic Europe*, where people can build the life they want.
Language
en

Technology

Server
nginx
CMS
Drupal
Fonts
  • Google Fonts

Third-party hosts loaded (1)

  • fonts.googleapis.com×1

Social

DNS records live

NS
  • ns-1019.awsdns-63.net
  • ns-1221.awsdns-24.org
  • ns-2034.awsdns-62.co.uk
  • ns-347.awsdns-43.com
MX
  • 10 inbound-smtp.eu-west-1.amazonaws.com
TXT
Show 5 TXT records
  • 0qyhmtrsf99kj6l61jb8hq3bcgd3m85n
  • 0z1zbj8qpw8qczfcrlp0wwlmflqbm9ds
  • Sendinblue-code:0876a690c1a332f1389dcdf78fad9179
  • globalsign-domain-verification=7aiTU6Sb9K7PXfPoTpM98kDoH3Rn9XNuRbgI8i-s66
  • google-site-verification=kYvypRC5keCJGkIdofvA4JOgC47XOW20NZxS1phIiXQ

Email authentication strong

SPF
v=spf1 include:amazonses.com include:spf.sendinblue.com mx ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;pct=100;fo=1;sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf;
policy: quarantine · sp=none
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-07-31 to 2026-05-26
Expires in 7 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.eppgroup.eu/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
script-src 'self' https://platform.twitter.com https://www.facebook.com www.google-analytics.com sdk.privacy-center.org api.privacy-center.org https://connect.facebook.net https://www.googletagmanager.com https://snap.licdn.com https://ssl.google-analytics.com https://www.google-analytics.com https://cdnjs.cloudflare.com http://www.google-analytics.com 'unsafe-inline' 'unsafe-hashes'; font-src 'self' https://fonts.gstatic.com https://fonts.googleapis.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com; frame-src 'self' https://www.youtube.com https://platform.twitter.com https://www.facebook.com https://m.facebook.com https://open.spotify.com https://www.linkedin.com https://www.googletagmanager.com; connect-src api.privacy-center.org sdk.privacy-center.org *.google-analytics.com *.googletagmanager.com *.facebook.com *.google.com *.linkedin.com https://googleads.g.doubleclick.net 'self' https://www.google-analytics.com https://stats.g.doublec

Links to (16)

Linked from (10)