indexo.dev

eventticketkaufen.de

.de crawl

First seen 2026-05-02 · Last seen 2026-05-20 · ok HTTP/1.1 200 571 ms crawled 2026-05-08

FR · 51.195.71.103 · AS16276 OVH SAS

Reputation 100/100

Classifying

HTML metadata

Title
Checkout - WIRKUNG.entry
Language
de

Technology

Server
nginx
CMS
Gatsby

Registration

Updated
2026-04-27
Name servers
  • root-dns.netcup.net.
  • second-dns.netcup.net.
  • third-dns.netcup.net.

DNS records live

NS
  • root-dns.netcup.net
  • second-dns.netcup.net
  • third-dns.netcup.net

Email authentication no MX

SPF
v=spf1 include:sendgrid.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48K0VtBMz3M20/diwdDiG8OeI3sLyEMK95LV4R4Z1SH3h92eFyu/WsihLbyHQ2c/T9xKR3q/Nab4sJ2r6D…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZ0AoZqH2B5TAEi7hE8t3RIhXYMzZHc9tSFCnEIkvZb7hHfX7SebrhKbFOptL1eFLIIKdMOyUiAURWv3IX…
selectors probed

Certificate (current)

E7
from 2026-04-14 to 2026-07-13
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://eventticketkaufen.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' https://*.js.stripe.com https://js.stripe.com https://connect.facebook.net; img-src 'self' https://storage.eventticketkaufen.de https://www.facebook.com; style-src 'self' 'unsafe-inline'; font-src 'self'; object-src 'none'; frame-src 'self' https://*.js.stripe.com https://js.stripe.com; worker-src 'self'; connect-src 'self';
strict-transport-security
max-age=31536000

Linked from (1)