indexo.dev

guidemate.com

.com crawl

First seen 2026-04-30 · Last seen 2026-05-08 · ok HTTP/1.1 200 1872 ms crawled 2026-05-08

DE · 162.55.158.0 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
guidemate - die Plattform für Audiowalks
Description
guidemate ist die Plattform für Audioguides, Audiowalks und Hörspaziergänge. Hier findest du touristische Städteführungen, künstlerische Produktionen und solche, die von Schulen und Bildungseinrichtungen erstellt wurden. Und du kannst auch selbst einen Audiowalk erstellen. Probiere es aus!
Language
de
Canonical
https://de.guidemate.com/
Translations
  • de
  • en

Technology

Third-party hosts loaded (1)

  • guidemate.s3.fr-par.scw.cloud×7

Social

Contact

Email

Registration

Registrar
united-domains GmbH
Created
2008-11-07
Expires
2026-11-07 171 days left
Updated
2026-04-02
Name servers
  • helium.ns.hetzner.de
  • hydrogen.ns.hetzner.com
  • oxygen.ns.hetzner.com

DNS records live

NS
  • helium.ns.hetzner.de
  • hydrogen.ns.hetzner.com
  • oxygen.ns.hetzner.com
MX
  • 10 mx00.udag.de
  • 10 mx01.udag.de
TXT
  • google-site-verification=7dHAOPcPb77CtmTH_fXJErUQ-p8C-pOhyrpZfaqoKf8
  • _amazonses.guidemate.com=nmQE8ujR1zacvTQhoY/KYbZzVztfEPZwFIOx/7h0wrs=

Email authentication weak

SPF
v=spf1 include:_smtp.udag.de ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-03-20 to 2026-06-18
Expires in 30 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://de.guidemate.com/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
child-src blob: ;; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.google.com www.gstatic.com connect.facebook.net *.youtube.com *.ytimg.com *.mapbox.com *.paypal.com; base-uri 'none'; object-src 'none'; img-src 'self' data: blob: *.s3.fr-par.scw.cloud *.gstatic.com *.google.com *.mapbox.com *.amazonaws.com *.paypal.com *.paypalobjects.com;; worker-src blob: ;; frame-src 'self' www.google.com *.facebook.com guidemate.com *.guidemate.com *.paypal.com localhost:9000 *.localhost:9000

Links to (9)

Linked from (1)