hepster.com
hepster.com
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (2)
- images.prismic.io×30
- hepster-product-production.cdn.prismic.io×4
Social
Contact
- Phone
- Address
- Am Kreuzgraben 1a, 18146, Rostock, DE
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 2003-01-27
- Expires
- 2027-01-27 251 days left
- Updated
- 2026-05-15
- Name servers
-
- ns-1062.awsdns-04.org
- ns-1817.awsdns-35.co.uk
- ns-217.awsdns-27.com
- ns-583.awsdns-08.net
DNS records live
- NS
-
- ns-1062.awsdns-04.org
- ns-1817.awsdns-35.co.uk
- ns-217.awsdns-27.com
- ns-583.awsdns-08.net
- MX
-
- 0 hepster-com.mail.protection.outlook.com
- TXT
-
hubspot-developer-verification=Yzc1NTRlYzgtMzY2Ny00ZTgxLWFkZWQtYzhhZjA0NzNjMjAz
- Verified for
-
- Anthropic
- Apple
- Canva
- Meta
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:25217402.spf06.hubspotemail.net include:agenturserver.de include:servers.mcsv.net include:mail.zendesk.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400policy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDO1XG9dYZTeJyfIl0mxxExVKkf+p+WH12uwxmwUHqUL9e5bpylK481CGYH/Se4qWr+bEdAhRyWH0GA95TSyZ… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
selectors probed - selector1:
Certificate (current)
Amazon RSA 2048 M01
Expires in 203 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP uses wildcard sources
- weak frame protection
Header values
- referrer-policy
no-referrer- x-frame-options
allow-from https://newapp.etracker.com- permissions-policy
accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), battery=(self), camera=(self), cross-origin-isolated=(self), display-capture=(self), document-domain=*, encrypted-media=(self), execution-while-not-rendered=*, execution-while-out-of-viewport=*, fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), navigation-override=(self), payment=(self), picture-in-picture=*, publickey-credentials-get=(self), screen-wake-lock=(self), sync-xhr=*, usb=(self), web-share=(self), xr-spatial-tracking=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self'; img-src 'self' *.prismic.io https://www.gstatic.com data: *.adyen.com https://www.paypalobjects.com https://widgets.trustedshops.com *.etracker.de https://www.facebook.com https://www.google.com https://www.google.de https://bat.bing.com https://www.awin1.com https://www.wepowerconnections.com https://adservice.google.com https://a.twiago.com https://www.financeads.net https://www.googleadservices.com https://cdn.popupsmart.com *.popupsmart.com https://www.google.at https://connect.facebook.net https://prismic-io.s3.amazonaws.com https://www.google.fr https://ade.googlesyndication.com *.octonomy.ai wss://hepster.wss.octonomy.ai https://lantern.roeye.com https://track.adform.net https://as.ad4m.at https://ih.adscale.de https://rtb-csync.smartadserver.com https://simage2.pubmatic.com https://dsum-sec.casalemedia.com https://ad.doubleclick.net https://www.googletagmanager.com https://cm.g.doubleclick.net https://bat.bing.net https://consent.cookiefirst.com; script-src- strict-transport-security
max-age=15552000- cross-origin-opener-policy
unsafe-none- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
cross-origin