indexo.dev

homecase.de

.de crawl

First seen 2026-04-17 · Last seen 2026-05-11 · ok HTTP/1.1 200 8049 ms crawled 2026-05-12

NL · 40.118.71.240 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Homecase
Description
HOMECASE verbindet alle Personen rund ums Haus und vereinfacht die Kommunikation zwischen Hausverwaltern, Mietern, Eigentümern und Dienstleistern.
Language
de

Technology

CMS
Gatsby

Registration

Updated
2026-02-12
Name servers
  • carrera.ns.cloudflare.com.
  • peyton.ns.cloudflare.com.

DNS records live

NS
  • carrera.ns.cloudflare.com
  • peyton.ns.cloudflare.com
MX
  • 0 homecase-de.mail.protection.outlook.com
TXT
  • MS=ms40061647
  • google-site-verification=XGT7dUotioXxOpYqus-ykOlXT_-O-aZEhM-5QoU9Dr4

Email authentication partial

SPF
v=spf1 include:u3468909.wl160.sendgrid.net include:em6909.homecase.de include:u2188814.wl065.sendgrid.net include:emdev2302.homecase.de include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1;p=none;rua=mailto:postmaster@homecase.de;pct=100;ri=86400
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTHnexO+1steU2g6LTK7yx2fTyaQaMGNM9aBkElUa9mdpQlrTYnJ9LuNakun7fMSBs7mUek/Bt8v6Qx/zl…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8gZh0HLkXcj5QBzqv//YkreTh/54sCK8JwceWfDu2Cz1qxtfgMGNCTj6PXYvxB1OY2Nt+qsGYjpzmNofs7j2xcm…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-01-27 to 2027-02-28
Expires in 284 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.homecase.de/

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self'; font-src 'self' data:; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com blob: data:; connect-src 'self' https://*.google-analytics.com blob: wss://*.homecase.de https://o4508456752971776.ingest.de.sentry.io https://*.homecase.de https://*.signalr.net wss://*.signalr.net; object-src 'self' blob: https://*.homecase.de ; worker-src 'self' https://*.homecase.de ; media-src 'self' blob: https://*.homecase.de ; frame-src 'self' blob: https://*.homecase.de ; img-src 'self' www.googletagmanager.com data: blob: wss://*.homecase.de https://*.homecase.de

Linked from (3)