holzprofi.com

HTML metadata

Technology

CDN

Cloudflare

CMS

Shopify

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• cdn.shopify.com×74
• holzprofi.ch×2
• www.googletagmanager.com×2

Social

• youtube
• instagram
• facebook

Registration

Registrar

EPAG Domainservices GmbH

Created

1998-12-07

Expires

2026-12-06 186 days left

Updated

2025-12-07

Name servers

• ns1.easyname.eu
• ns2.easyname.eu

DNS records live

NS

• ns1.easyname.eu
• ns2.easyname.eu

MX

• 10 antispam01.powernetworks.at

Verified for

• Google

Email authentication partial

SPF

v=spf1 ip4:195.201.38.220 a mx -all

strict (-all)

DMARC

v=DMARC1; p=none; pct=100

policy: none (monitoring only)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlyQ71UsEN0YzkqpcrjlYmBR2a8Cb52AIB1lpf6XCm3cAiWzGV6bmjZY6CyilS/2hZV1XzUXae1imn1C9T…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/X4+f2RzllNe00pwQQRExSMwxbvDoVInm4pXHEwZMWu5Ku7jNazEnPdu8VpVtMap/cV934wDd3w2Mi1lE…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://holzprofi.com/

present

• strict-transport-security
• content-security-policy
• x-content-type-options

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (9)

• youtube.com×1
• japa-austria.com×1
• instagram.com×1
• holzbearbeitung.at×1
• hauslhof.de×1
• hans-schreiner.de×1
• gebrauchtmaschinen-kaufen.com×1
• forestor-pilous.de×1
• facebook.com×1

Linked from (7)

• gebrauchtmaschinen-kaufen.com×1
• holzbearbeitung.at×1
• hauslhof.de×1
• japa-austria.com×1
• forestor-pilous.de×1
• hans-schreiner.de×1
• drechslerforum.at×1