hc24.de

HTML metadata

Technology

Server

nginx

CMS

Next.js

Analytics

• Google Tag Manager

Third-party hosts loaded (1)

• www.googletagmanager.com×1

Social

• facebook
• youtube
• instagram

Registration

Updated

2021-03-04

Name servers

• dns1.nsdns.info.
• dns2.nsdns.info.
• dns3.nsdns.info.

DNS records live

NS

• dns1.nsdns.info
• dns2.nsdns.info
• dns3.nsdns.info

MX

• 10 mxlb.ispgateway.de
• 100 hc24-de.mail.protection.outlook.com
• 20 mxlbpu.ispgateway.de

TXT

• Sendinblue-code:683ed4fb476e966a27d64e97d1018463
• MS=ms77607947

Email authentication weak

SPF

v=spf1 include:spf.mailjet.com mx a include:spf.sendinblue.com include:ispgateway.de ip4:78.47.12.186/32 ip4:83.135.45.178 ip4:83.135.45.179 a:mail01.terrabaltic.de include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF0m4u+dWakitDVrkeN9NqLm7leY85FZXZGu2Gvxx7U7qm1Zy9xjuwC6fMHvIbrJORXmsmEBQ7kcDS…
• mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.hc24.de/de/

present

• strict-transport-security

findings

• short HSTS max-age
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• facebook.com×2
• instagram.com×2
• youtube.com×2

Linked from (2)

• w-wt.de×2
• ina24.de×2