hiweso.de

.de crawl

First seen 2026-04-20 · Last seen 2026-05-13 · ok HTTP/1.1 200 3054 ms crawled 2026-05-13

DE · 195.145.156.32 · AS3320 Deutsche Telekom AG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Startseite
Description: Ihr Shop rund um Werkzeuge, Maschinen, Betriebseinrichtung, Arbeitsschutz, Werkstattbedarf und Verbindungstechnik
Language: de
Canonical: https://shop.hiweso.de/

Open Graph

url: https://shop.hiweso.de/
title: Willkommen im Hiweso-Shop
description: Ihr Shop rund um Werkzeuge, Maschinen, Betriebseinrichtung, Arbeitsschutz, Werkstattbedarf und Verbindungstechnik

Technology

Server: Apache

Social

Contact

Email

Phone

Registration

Updated

2024-09-17

Name servers

ns2.cm-system.de.
ns.cm-system.de.

DNS records live

NS

ns.cm-system.de
ns2.cm-system.de

MX

10 10458.in.tmes.trendmicro.eu

TXT

brevo-code:1ca2896057fd21de9b39ae10991c2c54
tmes=87fd2a704a7cda00096abdc3024bf8cf

Email authentication partial

SPF

v=spf1 a mx ip4:213.203.219.208 include:spf.tmes.trendmicro.eu -all

strict (-all)

DMARC

v=DMARC1; p=none; pct=100; ruf=mailto:dmarc@cm-system.de; rua=mailto:dmarc@cm-system.de; adkim=s; aspf=s

policy: none (monitoring only)

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R13

from 2026-04-08 to 2026-07-07

Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://shop.hiweso.de

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: child-src *.1worldsync.com *.also.com *.dailymotion.com *.datpool.net *.electronicsales-mediaserver.de *.googletagmanager.com *.hotjar.com *.instagram.com *.itscope.com *.klarna.com *.paypal.com *.paypalobjects.com *.saferpay.com *.sparkassen-kreditkarten.de *.vimeo.com *.vimeocdn.com *.webtrends.com *.webtrendslive.com *.youtube-nocookie.com *.ytimg.com 3dsecure-cardprocess.de blob: demob2b.commercesolution.de http://files.electronicsales.de maps.google.com masteradmin3.commercesolution.de masteradmin3.es-shops.de media.onlineplus.store oxomi.com ws.cnetcontent.com www.electronicsales.de www.google.com www.sandbox.paypal.com 'self' 'unsafe-inline' *.youtube.com *.skrill.com *.facebook.net *.oxomi.com *.plus6.de *.mycliplister.com https://api.fischer.group http://*.also.com; connect-src *.etrusted.com *.google-analytics.com *.google.com *.hotjar.com *.hotjar.io *.klarna.com *.minervafinance.de *.pingdom.net *.trustbadge.com cdn.cnetcontent.com google.com maps.googleapis.com oxomi.com s
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (7)

Linked from (1)

hiweso-shop.de×1