hoening.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 3239 ms crawled 2026-05-16

DE · 92.205.199.36 · AS60253 Host Europe GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

Innovative Fenster & Haustüren | HÖNING

Description

Kunststofffenster & Haustüren aus Kunststoff oder Aluminium made in Germany:Entdecken Sie unsere vielseitigen Fenster und Türen aus High-Tech Produktion!

Language

Generator

WordPress Download Manager 4.5.3

Canonical

https://www.hoening.de/

Feeds

HÖNING GmbH für Fenster und Türen Feed RSS

Open Graph

url: https://www.hoening.de/
title: Innovative Fenster & Haustüren | HÖNING
locale: de_DE
site name: HÖNING GmbH für Fenster und Türen
description: Kunststofffenster & Haustüren aus Kunststoff oder Aluminium made in Germany:Entdecken Sie unsere vielseitigen Fenster und Türen aus High-Tech Produktion!

Technology

Server: nginx
CMS: WordPress

Third-party hosts loaded (1)

maps.googleapis.com×2

Social

Contact

Email

info@hoening.de

Phone

Registration

Updated

2021-07-28

Name servers

ns81.domaincontrol.com.
ns82.domaincontrol.com.

DNS records live

NS

ns81.domaincontrol.com
ns82.domaincontrol.com

MX

10 mail.hoening.de

TXT

facebook-domain-verification=axa8uxb75ouu7pht4yygenkt1ao2w3
MS=C1D91412C0212665C7C244471FB6EE4B76448750

Email authentication weak

SPF: v=spf1 mx a include:mailgun.org include:secureserver.net include:ispgateway.de ip4:192.168.111.157 ip4:92.205.199.36 ip4:62.246.80.93 ip4:62.246.80.97 ip4:62.153.122.22 ip4:82.165.157.29 ip4:92.204.33.94 ip4:193.192.200.201 ip4:212.227.193.195 ip4:87.138.167.1 -all
strict (-all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Starfield Secure Certificate Authority - G2

from 2025-09-03 to 2026-09-20

Expires in 124 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.hoening.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline' blob:
strict-transport-security: max-age=15552000; includeSubDomains

Links to (5)

Linked from (1)

bergschreiner-duerr.de×2