indexo.dev

hihk.de

.de crawl

First seen 2026-04-15 · Last seen 2026-05-14 · ok HTTP/1.1 200 1061 ms crawled 2026-05-09

FR · 51.38.104.145 · AS16276 OVH SAS

Reputation 67/100 wrong cert no dmarc policy

sector other type blog

HTML metadata

Title
Startseite - Hessischer Industrie- und Handelskammertag
Language
de
Canonical
https://www.hihk.de

Open Graph

url
https://www.hihk.de
title
Startseite
site name
Hessischer Industrie- und Handelskammertag

Technology

Server
nginx
Cookie consent
  • Cookiebot

Third-party hosts loaded (3)

  • code.etracker.com×2
  • consent.cookiebot.eu×2
  • consentcdn.cookiebot.com×1

Social

Contact

Email
Phone
Address
Karl-Glässing-Straße 8, 65183, Wiesbaden

Registration

Updated
2026-02-12
Name servers
  • b.ns14.net.
  • c.ns14.net.
  • d.ns14.net.
  • ns1.ihk.de.
  • ns2.ihk.de.

DNS records live

NS
  • b.ns14.net
  • c.ns14.net
  • d.ns14.net
  • ns1.ihk.de
  • ns2.ihk.de
MX
  • 10 mx01.ihk.de
  • 10 mx02.ihk.de
  • 10 mx04.ihk.de
TXT
  • MS=ms17418719
  • D-TRUST=O5QQBBREQL9MQNEVN8YJFAF

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com include:spf.ihk.de -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current) wrong cert

Sectigo Public Server Authentication CA DV E36
from 2025-09-10 to 2026-10-12
Expires in 146 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.hihk.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
accelerometer=(), autoplay=(self), camera=(), encrypted-media=(self), fullscreen=(self "https://ihk-hessen.exmap.de" "https://ihk-nordwestfalen.exmap.de" "https://wms01.exmap.de" "https://wms02.exmap.de" "https://start.video-stream-hosting.de" "https://www.youtube-nocookie.com"), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(self), picture-in-picture=(self), sync-xhr=*, usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.arbeitsagentur.de *.assono.de *.b-ite.com *.betterplace.org *.callbert.ai *.canto.global *.cdninstagram.com *.chatcaptain.com *.chathero.ai *.cookiebot.com *.cookiebot.eu *.customer.callbert.ai *.dvinci-hr.com *.dwcdn.net *.easy-feedback.com *.etracker.com *.etracker.de *.eu-west-1.playback.live-video.net *.eventis.online *.exmap.de *.facebook.com *.fbcdn.net *.fontawesome.com *.google-analytics.com *.google.com *.google.de *.googleapis.com *.highcharts.com *.hk24.de *.ihk-baustellen-portal.de *.ihk-berlin.org *.ihk.de *.ihk24.de *.ihk24.ihk.de *.jobcluster.de *.jobs.personio.com *.jobs.personio.de *.julephosting.de *.kununu.com *.lineupr.com *.linkedin-ei.com *.linkedin.com *.mateforevents.com *.microsoft.com *.office.com *.office365.com *.openstreetmap.de *.openstreetmap.org *.podigee-cdn.net *.podigee.io *.powerappsportals.com *.rang-und-namen.de *.signalize.com *.spotify.com *.stage.bio *.stream24.net *.sweap.io *.sylphen.c
strict-transport-security
max-age=31536000 ; includeSubDomains

Links to (6)

Linked from (5)