ewr.de

HTML metadata

Technology

CDN

Azure Front Door

CMS

Next.js

Analytics

• Google Tag Manager

Cookie consent

• Usercentrics

Third-party hosts loaded (4)

• images.ctfassets.net×30
• www.eye-able-cdn.com×2
• www.googletagmanager.com×2
• web.cmp.usercentrics.eu×1

Social

• facebook
• youtube
• instagram
• linkedin

Registration

Updated

2017-02-02

Name servers

• ns-a.ktk.de.
• ns-b.ktk.io.
• ns-c.ktk.de.

DNS records live

NS

• ns-a.ktk.de
• ns-b.ktk.io
• ns-c.ktk.de

MX

• 10 mx01.ewr.de
• 10 mx02.ewr.de

TXT

Show 4 TXT records

• have-i-been-pwned-verification=dweb_vpb5lvxgloc1to99vnlhxyym
• MS=ms37365818
• google-site-verification=PvsQOSiwmxrErA6R_kya7kFF_Qsh0wPAZ8KfgrChyDA
• luWpHqFFWUpbcR/0uvhxmFQ1sH3losDlv2YrtxWuSSmZWk+ljEeHN3xiFv2Pxb84vTym6NS0mj6QnW6/QyxBLw==

Email authentication strong

SPF

v=spf1 mx ip4:193.158.93.136 include:spf.protection.outlook.com include:_spf.salesforce.com -all

strict (-all)

DMARC

v=DMARC1;p=none;sp=none;pct=100;rua=mailto:DMARC@ewr.de;ruf=mailto:DMARC@ewr.de;ri=86400;aspf=r;adkim=r;fo=1

policy: none (monitoring only) · sp=none

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.ewr.de

present

• content-security-policy

findings

• missing HSTS
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• facebook.com×2
• ewr-crowd.de×2
• ewr-netz.de×2
• youtube.com×2
• instagram.com×2
• linkedin.com×2
• ctfassets.net×1

Linked from (9)

• gc-rheinhessen.de×2
• das-festspielhaus.de×2
• ewr-netz.de×2
• sportbund-rheinhessen.de×2
• sporthilfe-rlp.de×2
• rhtb.de×2
• nibelungenfestspiele.de×2
• ewr-gruppe.de×1
• sportjugend-rheinhessen.de×1