indexo.dev

institutmodernivyzivy.cz

.cz crawl

First seen 2026-05-28 · Last seen 2026-05-28 · ok HTTP/1.1 200 1268 ms crawled 2026-05-30

FR · 178.32.252.115 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Institut moderní výživy | Institut moderní výživy
Language
cs

Technology

Server
nginx
CMS
Gatsby
Stack
Django
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Email

Registration

Registrar
REG-GRANSY
Created
2017-08-07
Expires
2026-08-06 66 days left
Updated
2023-07-07
Name servers
  • jade.ns.cloudflare.com
  • keenan.ns.cloudflare.com

DNS records live

NS
  • jade.ns.cloudflare.com
  • keenan.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • hubspot-developer-verification=OTkwNTA0MWEtZDE1OS00NGE5LTkxYzUtMGZjMjdiOWViMzNh
Verified for
  • Google
  • Meta

Email authentication partial

SPF
v=spf1 a mx ip4:95.168.193.101 include:_spf.google.com include:emsd1.com include:spf.contimex.cz include:spf.mailkit.eu ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc-rua@mailkit.com;
policy: none (monitoring only)
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+7yN0F2Sy5aTpljUqEjtOs4djKuYXVH+nHpQ7ayhwZF4v0aItge2yHgTBW2ilsakbELmsxtEKK2W8…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8gqsNB0pCjCAqQE/daWcgnNY/lX+DonIRx2q+SspYGrNVojR6m1piGS786wjtAKxmz7hPYGYSrwDhCo4j…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/pEst3WOuU3DhUfda5WrXBnzRl5NI3j4A7QauFCiVegg3T0HOaO1I1wlwZcHG9dCmyN8332qzwy2myZ0YE…
selectors probed

Certificate (current)

ZeroSSL RSA DV SSL CA 2
from 2026-05-09 to 2026-08-08
Expires in 68 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://institutmodernivyzivy.cz/cs/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
DENY
permissions-policy
accelerometer=(), autoplay=(self "https://player.vimeo.com" "https://player.castr.com"), camera=(), display-capture=(), encrypted-media=(self "https://player.vimeo.com" "https://player.castr.com"), fullscreen=(self "https://player.vimeo.com" "https://player.castr.com"), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
frame-src www.google.com www.googletagmanager.com www.youtube.com www.youtube-nocookie.com *.reservio.com player.vimeo.com imv.clickmeeting.com www.facebook.com player.castr.com www5.cbox.ws; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdnjs.cloudflare.com cookiehub.net *.smartsuppcdn.com *.cookiehub.eu; img-src 'self' data: *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndication.com *.g.doubleclick.net *.google.com *.google.cz c.seznam.cz *.doubleclick.net *.facebook.com *.mapbox.com *.fbcdn.net google.com; connect-src 'self' *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndication.com *.g.doubleclick.net *.google.com *.google.cz *.cookiehub.net *.hotjar.io *.smartsuppchat.com *.smartsuppcdn.com *.smartsupp.com wss://*.smartsupp.com *.facebook.com *.smartlook.cloud *.cookiehub.eu *.seznam.cz google.com; default-src 'self' www.google.com/recaptcha/ www.googletagmanager.com www.youtube.com/embed/ *.doubleclick.ne
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin; report-to="default"
cross-origin-embedder-policy
unsafe-none; report-to="default"
cross-origin-resource-policy
same-origin

Links to (34)

Linked from (1)