indexo.dev

g-u.de

.de crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 5415 ms crawled 2026-05-15

DE · 20.218.77.96 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Hochwertige Beschlagtechnik | Qualität für Fenster & Türen | Gretsch­-Unitas GmbH Baubeschläge
Description
Innovative Fenster- und Türbeschlagtechnik mit hohem Qualitätsanspruch und umfassendem Service – für Sicherheit und Wirtschaftlichkeit!
Language
de-DE
Canonical
/de-de

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager
Cookie consent
  • Usercentrics

Third-party hosts loaded (3)

  • web.cmp.usercentrics.eu×1
  • www.google.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Updated
2025-12-15
Name servers
  • ns1.f5clouddns.com.
  • ns2.f5clouddns.com.

DNS records live

NS
  • ns1.f5clouddns.com
  • ns2.f5clouddns.com
MX
  • 10 gu-de0c.mail.protection.outlook.com
TXT
Show 4 TXT records
  • v=DMARC1; p=reject; fo=0;
  • 2gmvgck8lakiain9fg85h2m3gk
  • Rk496hAeqBsXZQLOgeVynnbgfN0siGRiyVFqFaaOeqgKSAMexNnGYqIfmYcfp68PrG3f4xihsnJhKpR6CSIUmA==
  • bw=BAn9hlJ3hizfFCforRM5PW7UnSpj49ScixfCNOt23tJc
Verified for
  • Atlassian
  • DocuSign
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:_spf.g-u.de include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=0;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCwVLcKPQ0TFqcmrmTSGRZO6uCa3db7Dh7y4a8By18LpCQ09Kj/8kwP/kK3fSwTyU6bs+C0n1Y7yoZ…
selectors probed

Certificate (current)

Starfield Secure Certificate Authority - G2
from 2025-10-09 to 2026-10-19
Expires in 152 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.g-u.de/de-de

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; script-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' https://*.leadxperience.de https://svrdntfctn.com https://*.bootstrapcdn.com https://*.cloudflare.com https://*.doubleclick.net https://*.github.io https://*.google-analytics.com https://*.google.com https://*.googleapis.com https://*.googletagmanager.com https://*.gstatic.com https://*.jquery.com https://*.jsdelivr.net https://*.maxcdn.com https://*.usercentrics.eu https://sst.g-u.com https://sst-staging.g-u.com https://appsforoffice.microsoft.com https://ajax.aspnetcdn.com; style-src 'unsafe-inline' 'self' https://*.bootstrapcdn.com https://*.jsdelivr.net https://*.googleapis.com https://*.googletagmanager.com https://*.office.net; img-src 'self' data: https://*.leadxperience.de https://i.ytimg.com https://*.gu-gruppe.de https://*.usercentrics.eu https://*.googletagmanager.com https://*.gstatic.com https://*.googleapis.com https://*.g-u.com; font-src 'self' https://*.gstatic.com https://*.office.net;

Links to (7)

Linked from (3)