indexo.dev

hazet.de

.de crawl

First seen 2026-04-20 · Last seen 2026-05-19 · ok HTTP/1.1 200 3618 ms crawled 2026-05-14

FR · 92.205.28.10 · AS21499 Host Europe GmbH

Reputation 100/100

sector tech type homepage

HTML metadata

Title
HAZET – Das Werkzeug – Startseite - HAZET – Das Werkzeug
Language
de
Generator
TYPO3 CMS
Canonical
https://www.hazet.de/de/
Translations
  • cs-cz
  • da-dk
  • de
  • en
  • es-es
  • fr-fr
  • it-it
  • nl-nl
  • no-no
  • pl-pl
  • pt-pt
  • ro-ro

Technology

CDN
Cloudflare
Cookie consent
  • Cookiebot
Social widgets
  • Vimeo Embed

Third-party hosts loaded (2)

  • player.vimeo.com×8
  • consent.cookiebot.com×1

Social

Registration

Updated
2021-07-31
Name servers
  • ns1.telekom.net.
  • pns.dtag.de.

DNS records live

NS
  • ns1.telekom.net
  • pns.dtag.de
MX
  • 10 mx01.hazet.de
  • 20 mail.hazet.de
TXT
Show 7 TXT records
  • 376ff6b491fd59d1fe5c0e6f4b6b66a1
  • brevo-code:cb9bd0a243a7169abd5ab8dea81ad4ea
  • google-site-verification=iYYZsSPuOQm-qL49iZ5jfY-TR1EktxLK8xpSIgqiexA
  • google-site-verification=Cvq5QZKf4UD0WcstLLf1sTKhnoEsl8LOfmZfENNcxaI
  • facebook-domain-verification=1dk1jpyv19r1xkmjdnsvyk5ro8xnzv
  • apple-domain-verification=4mxqaWQw5ODoi2KY
  • MS=ms68122803

Email authentication strong

SPF
v=spf1 ip4:212.211.154.225 ip4:212.211.154.228 include:_spf.senders.scnem.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:noreply-dmarc@hazet.de; ruf=mailto:noreply-dmarc@hazet.de; fo=1; pct=100; adkim=s; aspf=s
policy: quarantine · sp=quarantine
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

Certum DV TLS G2 R39 CA
from 2026-01-22 to 2027-02-21
Expires in 277 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.hazet.de/de/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
default-src 'self' ; connect-src 'self' data: blob: https://www.hazet.de https://consentcdn.cookiebot.com https://consent.cookiebot.com https://maps.googleapis.com https://oxomi.com https://api.commerce-connector.com https://eu-api.friendlycaptcha.eu; font-src 'self' data: https://fonts.gstatic.com ; frame-ancestors 'self' ; frame-src 'self' blob: https://consentcdn.cookiebot.com https://oxomi.com https://www.youtube-nocookie.com https://www.google.com/ https://form.typeform.com/ https://*.sibforms.com/ https://player.vimeo.com/ https://*.frcapi.com/ ; img-src 'self' data: https://www.hazet.de https://oxomi.com https://maps.googleapis.com https://maps.gstatic.com https://imgsct.cookiebot.com https://shoplogos.commerce-connector.de ; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://www.hazet.de https://consent.cookiebot.com https://maps.googleapis.com https://oxomi.com https://www.youtube.com ; script-src-elem 'self' 'unsafe
strict-transport-security
max-age=31536000; includeSubDomains;

Links to (6)

Linked from (7)