indexo.dev

event.it

.it crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 177 ms crawled 2026-05-30

DK · 185.21.41.151 · AS48854 team.blue Denmark A/S

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
event IT
Description
Danmarks letteste og mest fleksible selvbetjeningsløsning for billetter og tilmeldinger til fester, konferencer, koncerter, festivaler og meget mere.
Language
da

Open Graph

url
https://event.it
title
event IT
site name
event IT
description
Danmarks letteste og mest fleksible selvbetjeningsløsning for billetter og tilmeldinger til fester, konferencer, koncerter, festivaler og meget mere.

Technology

Server
nginx
PHP
8.2.20 security-only
jQuery
1.11.3 known XSS (<3.5)
Stack
PHP
Analytics
  • Google Tag Manager
Cookie consent
  • Cookiebot

Third-party hosts loaded (4)

  • ajax.googleapis.com×1
  • consent.cookiebot.com×1
  • maxcdn.bootstrapcdn.com×1
  • www.googletagmanager.com×1

Contact

Email
Phone

DNS records live

NS
  • ns1.simply.com
  • ns2.simply.com
  • ns3.simply.com
  • ns4.simply.com
MX
  • 0 event-it.mail.protection.outlook.com
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:mailgun.org include:spf.protection.outlook.com include:emsd1.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:ictzodfr@ag.eu.dmarcian.com; ruf=mailto:ictzodfr@fr.eu.dmarcian.com; fo=1;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyP57uW2VVbxdwsb7lwk3TB71A/LG18t0dj4rCnG5tjGKgIr0voEv0lmNV72kmdorOztknN0u/pZ+Q9…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-08-15 to 2026-08-23
Expires in 83 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://event.it/

present
  • strict-transport-security
  • content-security-policy-report-only
findings
  • short HSTS max-age
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
strict-transport-security
max-age=300; includeSubDomains, max-age=31536000;
content-security-policy-report-only
object-src 'none'; script-src 'nonce-1a10d615bbb5f562fb7379f3296f3c88728d41307d10beec5196d6825a1780ee' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: http:; img-src 'self' https: data:; base-uri 'none'; frame-ancestors 'self' ;

Linked from (1)