indexo.dev

h2cast.com

.com crawl

First seen 2026-05-28 · Last seen 2026-05-28 · ok HTTP/1.1 200 708 ms crawled 2026-05-31

DE · 85.13.146.129 · AS34788 Neue Medien Muennich GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
H2CAST Etzel – Making energy transition work. | H2CAST Etzel
Description
H2CAST Etzel is intended to demonstrate the feasibility of large-volume underground storage of hydrogen.
Language
en
Generator
TYPO3 CMS
Canonical
https://h2cast.com/
Translations
  • de ×2
  • en

Open Graph

title
H2CAST Etzel – Making energy transition work.
image:url
https://h2cast.com/fileadmin/_processed_/3/5/csm_STORAG_ETZEL_H2Cast_Grafik_EN_3311afa626.jpg
description
H2CAST Etzel is intended to demonstrate the feasibility of large-volume underground storage of hydrogen.

Technology

Server
Apache

Third-party hosts loaded (1)

  • plugins.flockler.com×1

Contact

Address
Beim Postweg 2, 26446, Friedeburg, Lower Saxony, DE

Registration

Registrar
RegistryGate GmbH
Created
2022-01-19
Expires
2027-01-19 232 days left
Updated
2026-01-20
Name servers
  • ns5.kasserver.com
  • ns6.kasserver.com

DNS records live

NS
  • ns5.kasserver.com
  • ns6.kasserver.com
MX
  • 10 w014a799.kasserver.com
Verified for
  • Google

Email authentication partial

SPF
v=spf1 a mx include:spf.kasserver.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-30 to 2026-07-29
Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://h2cast.com/

present
  • content-security-policy
  • content-security-policy-report-only
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' https://plugins.flockler.com https://www.googletagmanager.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://fl-1.cdn.flockler.com https://media-api.flockler.com https://media.licdn.com; base-uri 'self'; frame-src 'self' https://challenges.cloudflare.com https://player.vimeo.com https://www.youtube-nocookie.com https://js.stripe.com https://www.sandbox.paypal.com; media-src 'self' https://media-api.flockler.com https://dms.licdn.com; style-src 'self' data: 'unsafe-inline' 'report-sample'; script-src-attr 'self' https://plugins.flockler.com https://www.googletagmanager.com data: 'unsafe-inline' 'report-sample'; connect-src 'self' https://www.sandbox.paypal.com https://api.flockler.app https://stats-api.flockler.app https://region1.google-analytics.com; script-src-elem 'self' https://plugins.flockler.com https://www.googletagmanager.com https://challenges.cloudflare.com https:/
content-security-policy-report-only
default-src 'self'; script-src 'self' https://plugins.flockler.com https://www.googletagmanager.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://fl-1.cdn.flockler.com https://media-api.flockler.com https://media.licdn.com; base-uri 'self'; frame-src 'self' https://challenges.cloudflare.com https://player.vimeo.com https://www.youtube-nocookie.com https://js.stripe.com https://www.sandbox.paypal.com; media-src 'self' https://media-api.flockler.com https://dms.licdn.com; style-src 'self' data: 'unsafe-inline' 'report-sample'; script-src-attr 'self' https://plugins.flockler.com https://www.googletagmanager.com data: 'unsafe-inline' 'report-sample'; connect-src 'self' https://www.sandbox.paypal.com https://api.flockler.app https://stats-api.flockler.app https://region1.google-analytics.com; script-src-elem 'self' https://plugins.flockler.com https://www.googletagmanager.com https://challenges.cloudflare.com https:/

Links to (9)

Linked from (1)