indexo.dev

greenwave.cz

.cz crawl

First seen 2026-05-28 · Last seen 2026-05-31 · ok HTTP/1.1 200 728 ms crawled 2026-05-31

CZ · 185.178.174.183 · AS206548 ZCOM.cz s.r.o

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Přírodní kosmetika, aromaterapie, bio kosmetika Praha
Description
Bio kosmetika, aromaterapie a ekodrogerie Praha 1, Primavera, Dr.Hauschka, Weleda, Ecover, Tropicai, Tautropfen, Mádara, Yes, Alva ,greenwave.cz

Technology

Server
Apache
jQuery
2.1.4 known XSS (<3.5)
Stack
PHP
Analytics
  • Google Tag Manager
Ads
  • Google Ads
  • Google Ads (DoubleClick)
Third-party hosts loaded (11)
  • cdn.jsdelivr.net×4
  • scontent-prg1-1.cdninstagram.com×4
  • www.googletagmanager.com×4
  • cdnjs.cloudflare.com×3
  • stackpath.bootstrapcdn.com×2
  • c.seznam.cz×1
  • googleads.g.doubleclick.net×1
  • translate.google.com×1
  • www.facebook.com×1
  • www.freeprivacypolicy.com×1
  • www.googleadservices.com×1

Social

DNS records live

NS
  • ns.forpsi.cz
  • ns.forpsi.it
  • ns.forpsi.net
MX
  • 10 mail2.3nicom.cz
TXT
  • v=DMARC1; p=none; rua=mailto:info@greenwave.cz; ruf=mailto:info@greenwave.cz; fo=1; adkim=r; aspf=r; pct=100;

Email authentication partial

SPF
v=spf1 mx a include:spf.mandrillapp.com include:sparkpostmail.com include:_spf.zcom.cz ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:2qhf6uso47@dmarc-reports.ecomailapp.com; fo=1
policy: none (monitoring only)
DKIM
  • mail: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDjoWUr747IdM8+V/U1uzTHr3bWUY+AYQ5sSqW85aBL1ejtXQIAPmXFcADHfoyGnUgXrKaYpqAOwcXVjZI4Hk…
selectors probed

Certificate (current)

E7
from 2026-05-22 to 2026-08-20
Expires in 81 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://greenwave.cz/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: blob: https:; font-src 'self' data: https:; connect-src 'self' https: wss:; frame-src 'self' https:; form-action 'self' https://*.comgate.cz https://*.gopay.com https://*.gopay.cz https://*.gpwebpay.com https://www.greenwave.cz https://greenwave.cz; frame-ancestors 'self'; base-uri 'self'; object-src 'none'
strict-transport-security
max-age=31536000; includeSubDomains

Links to (5)

Linked from (1)