indexo.dev

grenkebank.de

.de crawl

First seen 2026-04-20 · Last seen 2026-05-14 · ok HTTP/1.1 200 5176 ms crawled 2026-05-14

DE · 195.200.51.140 · AS15590 Atruvia AG

Reputation 100/100

Classifying

HTML metadata

Title
Banking für Privat & Firmenkunden - grenke Bank AG
Description
Die Online Bank für Privatkunden & Unternehmen: Banking, Konten, Geldanlagen uvm. einfach digital erledigen. Jetzt mehr erfahren & starten.
Language
de-DE
Canonical
https://www.grenkebank.de/startseite.html

Open Graph

url
https://www.grenkebank.de/startseite.html
title
Banking für Privat & Firmenkunden
language
de
description
Die Online Bank für Privatkunden & Unternehmen: Banking, Konten, Geldanlagen uvm. einfach digital erledigen. Jetzt mehr erfahren & starten.

Technology

Third-party hosts loaded (1)

  • atruvia.scene7.com×5

Registration

Updated
2025-08-12
Name servers
  • nsa1.atruvia.de.
  • nsa2.atruvia.de.

DNS records live

NS
  • nsa1.atruvia.de
  • nsa2.atruvia.de
MX
Show 8 MX records
  • 20 omail22.gadmail.de
  • 20 omail23.gadmail.de
  • 20 rmail22.gadmail.de
  • 20 rmail23.gadmail.de
  • 30 gmail22.gadmail.de
  • 30 gmail23.gadmail.de
  • 30 wmail22.gadmail.de
  • 30 wmail23.gadmail.de
TXT
Show 4 TXT records
  • miro-verification=7245e9830e7ca0ac09464298c128093f69280dd5
  • D-TRUST=KD6NGWKX4OQ4NE6G5N5J7BA
  • swisssign-check=KuLwYoqd7LWwIj2KnBxNKbJjOgs
  • MS=ms66626630

Email authentication strong

SPF
v=spf1 include:net1.spf.fiduciagad.de include:spf.mailjet.com -all
strict (-all)
DMARC
v=DMARC1; p=reject
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

D-TRUST SSL Class 3 CA 1 EV 2009
from 2026-04-05 to 2026-10-20
Expires in 154 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.grenkebank.de/startseite.html

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' https://maps.googleapis.com 'sha256-aSqN2R3jDvHFUL3vVOUtG6OJr1IF+Y31IPMdo0dLU6U=' 'nonce-5b94839480d95032be31ef5dfebd3ed5' https://cdn.cookielaw.org https://assets.adobedtm.com https://connect.facebook.net https://www.googleadservices.com https://www.google.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://analytics.tiktok.com https://snap.licdn.com https://s.pinimg.com; base-uri 'self'; font-src 'self' https: data:; form-action 'self'; frame-src 'self' https://www.youtube-nocookie.com https://td.doubleclick.net https://www.googletagmanager.com https://analytics-ipv6.tiktokw.us https://ct.pinterest.com; frame-ancestors 'none'; object-src 'self'; style-src 'self' 'unsafe-inline' https:; img-src https: data:; connect-src 'self' data: https://maps.googleapis.com wss://*.mypurecloud.de https://cdn.cookielaw.org https://geolocation.onetrust.com https://privacyportal-de.onetrust.com https://adobedc.demdex.net https://edge.a
strict-transport-security
max-age=31536000

Links to (1)

Linked from (1)