hessenpark.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-19 · ok HTTP/1.1 200 5132 ms crawled 2026-05-09

DE · 94.130.217.216 · AS24940 Hetzner Online GmbH

Reputation 94/100 dmarc monitor-only

sector other type homepage

HTML metadata

Title: Freilichtmuseum Hessenpark - Freilichtmuseum Hessenpark
Description: Willkommen im Freilichtmuseum Hessenpark. Hier gibt es spannende Einblicke in 400 Jahre hessische Geschichte und Alltagskultur.
Language: de-DE
Generator: WordPress 6.9.4
Canonical: https://www.hessenpark.de/

Open Graph

url: https://www.hessenpark.de/
title: Freilichtmuseum Hessenpark
locale: de_DE
site name: Freilichtmuseum Hessenpark
description: Willkommen im Freilichtmuseum Hessenpark. Hier gibt es spannende Einblicke in 400 Jahre hessische Geschichte und Alltagskultur.

Technology

Server: Apache
CMS: WordPress

Social

Contact

Email

Phone

2026-04-05 02

Registration

Updated

2025-11-20

Name servers

helium.ns.hetzner.de.
hydrogen.ns.hetzner.com.
oxygen.ns.hetzner.com.

DNS records live

NS

helium.ns.hetzner.de
hydrogen.ns.hetzner.com
oxygen.ns.hetzner.com

MX

10 hessenpark-de.mail.eo.outlook.com

Email authentication partial

SPF

v=spf1 a mx ip4:62.96.29.116/32 ip4:94.130.217.216/32 ip6:2a01:4f8:13b:1a5d::2 include:spf.protection.outlook.de include:return-cname.emailsys.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzxOcXAf5++8Zg0PQjbf6PkF+/54eLt9wlKp6CpvliRMLqwGjx1yV9pjTsd1G4ELRZ2rye02ynLRCjo22Nh1…

selectors probed

Certificate (current)

from 2026-04-06 to 2026-07-05

Expires in 47 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.hessenpark.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin, no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(self "https://*.youtube.com" "https://*.youtube-nocookie.com"),payment=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval'; worker-src 'self' blob:; frame-src 'self' blob: www.youtube.com https://*.youtube-nocookie.com my.dimension3.de
strict-transport-security: max-age=2592000; includeSubdomains;

Links to (3)

Linked from (2)

1qmlein.de×2
find-it-in-frm.de×2