indexo.dev

evavol.eu

.eu crawl

First seen 2026-04-12 · Last seen 2026-05-06 · ok HTTP/1.1 200 9126 ms crawled 2026-05-06

ES · 82.98.176.40 · AS42612 DinaHosting S.L.

Reputation 75/100 wrong cert

sector other type landing page

HTML metadata

Title
Home
Language
en-US

Open Graph

url
https://www.evavol.eu/
title
Home
description
Select your language

Technology

Server
ESF
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • lh3.googleusercontent.com×17
  • fonts.googleapis.com×2
  • www.gstatic.com×2
  • apis.google.com×1

Contact

Email

DNS records live

NS
  • ns.gestiondecuenta.com
  • ns2.gestiondecuenta.com
  • ns3.gestiondecuenta.com
  • ns4.gestiondecuenta.com
MX
  • 10 mail.evavol.eu
TXT
  • v=spf1 a mx ~all
  • google-site-verification=zN_Md44cMB1TZ6p6M46V7fJkYAWsCJLmkHNOdjnxuho

Certificate (current) wrong cert

GlobalSign RSA OV SSL CA 2018
from 2025-10-06 to 2026-11-07
Expires in 171 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.evavol.eu/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
origin
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
base-uri 'self';object-src 'none';report-uri /_/view/cspreport;script-src 'report-sample' 'nonce-kyQVwl_WtYrWTLvY6tckGg' 'unsafe-inline' 'unsafe-eval';worker-src 'self';frame-ancestors https://google-admin.corp.google.com/
cross-origin-opener-policy
unsafe-none
cross-origin-resource-policy
same-site

Links to (1)

Linked from (1)