indexo.dev

hygium.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 4862 ms crawled 2026-05-16

DE · 81.173.216.123 · AS8422 NetCologne Gesellschaft fur Telekommunikation mbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Home: Hygium
Language
de
Canonical
https://www.hygium.de/

Technology

Server
Apache

Third-party hosts loaded (1)

  • code.etracker.com×1

Contact

Phone

Registration

Updated
2024-09-11
Name servers
  • ns2.inity.net.
  • ns3.inity.eu.
  • ns4.inity.eu.
  • ns.inity.net.

DNS records live

NS
  • ns.inity.net
  • ns2.inity.net
  • ns3.inity.eu
  • ns4.inity.eu
MX
  • 10 mailgw.insigma.de
TXT
  • jjnhq7kdajb8ioo2ln9li035st

Email authentication weak

SPF
v=spf1 include:spf-policy.mailrelay-out.netcologne.de include:spf.protection.outlook.com include:spf-policy.insigma.de -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-30 to 2026-07-29
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.hygium.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
sameorigin
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://*.etracker.de https://*.etracker.com; media-src 'self'; font-src 'self' wisplinghoff.inity.net fonts.gstatic.com; style-src 'self' 'unsafe-inline' wisplinghoff.inity.net fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.etracker.com https://*.etracker.de https://code.jquery.com blob:; img-src 'self' data: wisplinghoff.inity.net maps.gstatic.com maps.googleapis.com; frame-ancestors 'self' https://*.etracker.com;
strict-transport-security
max-age=63072000

Linked from (2)