indexo.dev

hwk.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-13 · ok HTTP/1.1 200 389 ms crawled 2026-05-09

DE · 185.233.55.110 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Startseite » Handwerkskammer Rheinhessen
Description
Ausbildung, Weiterbildung und Beratung: Die Handwerkskammer Rheinhessen ist Ihr Partner des Handwerks zwischen Mainz, Bingen, Alzey und Worms.
Language
de
Canonical
https://www.hwk.de/

Open Graph

url
https://www.hwk.de/
title
Startseite - Handwerkskammer Rheinhessen
locale
de_DE
site name
Handwerkskammer Rheinhessen
description
K. d. ö. R.

Technology

Server
Apache
CMS
WordPress

Third-party hosts loaded (1)

  • ai.uniplus-software.de×1

Contact

Email
Phone

Registration

Updated
2020-04-23
Name servers
  • ns1089.ui-dns.biz.
  • ns1089.ui-dns.com.
  • ns1089.ui-dns.de.
  • ns1089.ui-dns.org.

DNS records live

NS
  • ns1089.ui-dns.biz
  • ns1089.ui-dns.com
  • ns1089.ui-dns.de
  • ns1089.ui-dns.org
MX
  • 0 hwk-de.mail.protection.outlook.com
TXT
Show 4 TXT records
  • MS=ms83542922
  • swisssign-check=Hz08iGg2VjLfQPWUFaozicX-Ys8
  • apple-domain-verification=yFWCqjuDV6zmKb4C
  • bw=tbXn6wF2S4BMfkeOaFDqnFm1HnXYUKRjFPay7NeiQITW

Email authentication weak

SPF
v=spf1 a mx include:spf.protection.outlook.com include:spf.mailjet.com include:spf.eu.exclaimer.net a:smtp-o365-in.hwk.de a:securemail.bluexess.net include:spf.crsend.com ~all
softfail (~all)
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuO43fDfjibx8bBNkZ+Qh3ZnDzxXGqCh+NYvaAh9ay0pXBZc11jPGp5fagkuYDdQJ5sBdBxrzOVGMu…
selectors probed

Certificate (current)

R13
from 2026-03-17 to 2026-06-16
Expires in 27 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.hwk.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
origin
x-frame-options
deny
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://www.hwk.de; img-src * data:; style-src 'self' 'unsafe-inline' https://*.b-ite.com/ https://fonts.googleapis.com/css https://api.signalize.com/ https://ai.uniplus-software.de/ http://localhost:3000/; script-src https://www.hwk.de https://maps.googleapis.com/ https://www.instagram.com/ https://code.etracker.com/ https://api.signalize.com/ https://www.etracker.de/ https://*.b-ite.com/ https://www.google-analytics.com https://www.googletagmanager.com/ https://matomo.uniplus-software.de/matomo/matomo.js https://*.emailsys1a.net/ https://www.paypal.com/ https://js-agent.newrelic.com https://landesverwaltung.vergabe.rlp.de/ https://ai.uniplus-software.de 'unsafe-inline' 'unsafe-eval'; font-src 'self' data: https://api.signalize.com/ https://fonts.gstatic.com/; frame-src 'self' https://share.uniplus-software.de/ https://t921c9cab.emailsys1a.net/ https://www.youtube-nocookie.com/ https://www.youtube.com/ https://www.instagram.com/ https://vimeo.com/ https://www.pay
strict-transport-security
max-age=31536000; includeSubDomains

Links to (4)

Linked from (6)