indexo.dev

esbank.pl

.pl crawl

First seen 2026-06-02 · Last seen 2026-06-04 · ok HTTP/1.1 200 386 ms crawled 2026-06-03

PL · 212.85.106.58 · AS12824 home.pl sp. z o.o.

Reputation 100/100

Classifying

HTML metadata

Title
ESBANK - Bank Spółdzielczy
Language
pl

Open Graph

url
https://esbank.pl/
title
ESBANK - Bank Spółdzielczy

Technology

Server
Apache
Stack
PHP
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • www.googletagmanager.com×2
  • cdn-cookieyes.com×1
  • fonts.googleapis.com×1
  • ga.jspm.io×1
  • www.facebook.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • dns.home.pl
  • dns2.home.pl
  • dns3.home.pl
MX
  • 10 esbank-pl.mail.protection.outlook.com
TXT
Show 4 TXT records
  • mojecertpl-site-verification-pzsiu48dsSoSxTbTPRoVRjdQxQJUlm5w
  • 7df6cce539ba13ad5355851977c26b526aa0302093a728d54e680ea58d14fbf
  • 2441852ba6b454d1788f82bffdfe2f2733bfecb00970ceade1c32aad4f90d66
  • 8b70e247b98d2da79621009e992c1f44cb880362ae5b7d8d2f8abd5103c7408

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:security@esbank.pl; ruf=mailto:security@esbank.pl; rf=afrf
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCgNfR6u4SOkhCj483kr7DixGbjBmtSb9nuGj07xSaFyOyqO8n18SsnzRbI8kH4yqSl/f4eCN25bhqIYnDPzn…
selectors probed

Certificate (current)

Certum OV TLS G2 R39 CA
from 2026-06-02 to 2026-12-18
Expires in 195 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://esbank.pl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://*.gstatic.com https://*.google.com https://*.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: *.gs-net.pl *.googleapis.com *.google.com *.gstatic.com connect.facebook.net *.googletagmanager.com *.google-analytics.com cdn-cookieyes.com ga.jspm.io; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com; frame-src 'self' *.gs-net.pl *.youtube.com *.google.com; img-src 'self' data: https://*.sgb.pl https://*.fbcdn.net https://*.google.com https://*.googleapis.com https://*.gstatic.com https://cdn-cookieyes.com https://*.google.pl; connect-src 'self' https://log.cookieyes.com https://*.gstatic.com https://*.google.com https://*.googleapis.com https://cdn-cookieyes.com;
strict-transport-security
max-age=31536000

Links to (9)

Linked from (2)