iwoca.de

HTML metadata

Title: Firmenkredite für kleine Unternehmen und Selbständige
Description: Firmenkredite ohne lange Wartezeiten oder aufwendige Bürokratie mit iwoca. Jetzt kostenlos und unverbindlich anfragen. Blitzschneller Firmenkredit I 1.000 € - 500.000 € I iwoca
Language: en
Canonical: https://www.iwoca.de

Open Graph

title: Firmenkredite für kleine Unternehmen und Selbständige
description: Firmenkredite ohne lange Wartezeiten oder aufwendige Bürokratie mit iwoca. Jetzt kostenlos und unverbindlich anfragen. Blitzschneller Firmenkredit I 1.000 € - 500.000 € I iwoca

Technology

CDN: Cloudflare
Server: nginx
CMS: Gatsby

Analytics

Google Tag Manager

Cookie consent

OneTrust

Fonts

Google Fonts

Third-party hosts loaded (14)

cdn.prod.website-files.com×63
cdn-ukwest.onetrust.com×2
cdn.jsdelivr.net×2
hubspotv2.use1-marketplace-1p-apps-prod-red.if.webflow.services×2
signup-static.iwoca.com×2
widget.trustpilot.com×2
ajax.googleapis.com×1
cdnjs.cloudflare.com×1
d3e54v103j8qbb.cloudfront.net×1
dev.visualwebsiteoptimizer.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
js.hs-scripts.com×1
www.googletagmanager.com×1

Social

Contact

Email

Phone

06994323020

Registration

Updated

2025-07-21

Name servers

ns-1098.awsdns-09.org.
ns-1747.awsdns-26.co.uk.
ns-222.awsdns-27.com.
ns-982.awsdns-58.net.

DNS records live

NS

ns-1098.awsdns-09.org
ns-1747.awsdns-26.co.uk
ns-222.awsdns-27.com
ns-982.awsdns-58.net

MX

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com
30 alt2.aspmx.l.google.com
40 aspmx2.googlemail.com
50 aspmx3.googlemail.com

TXT

Show 13 TXT records

apple-domain-verification=yz2mPWydc2OMfmUF
atlassian-domain-verification=b5s2EgcqfJLXmnpMlD345IbBVMGYYvGwxVI3Vn236GMYxNPMuWqeHFlXE+JXviJ6
facebook-domain-verification=pdzl0hf6b5ofpg5ny15qg393gpn4xl
google-site-verification=2ufRV2_5bIh6NQXcXK5sktmUqLSvEIG-60M8OmIwxdU
google-site-verification=6G-0dQEVD2US860mhOZGGGOMXSs3F4IZP743gt6lqxI
google-site-verification=ONmdvNQ4M3v0Pgk59sLZIR7KfeuzmhUCr9urccsCBfs
knowbe4-site-verification=19abcac27653b6ad8338478ab7d59be5
onetrust-domain-verification=0aedded6b3f047ab84f6f60984ea62da
slack-domain-verification=vSWKZIWTPt1bPIp2axEIYynTd41oQwYICrKpBU9K
CKO=cli_h36lvccuxyeefid4p42cezt5pu
MS=ms37766154
_i7n5qxfcyq3ve6jpuwdgljmktnsdyz2
access-domain-verification=edcf49075387fef815b2d869cd7ef703ecdf19c68b790bfff9f2db69c0bdf3dd

Email authentication strong

SPF

v=spf1 include:_u.iwoca.de._spf.smart.ondmarc.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; pct=100; sp=reject; rua=mailto:d1af1dd2@inbox.ondmarc.com; ruf=mailto:d1af1dd2@inbox.ondmarc.com; adkim=r; aspf=r; fo=0; rf=afrf; ri=3600

policy: reject (enforced) · sp=reject

DKIM

Show 4 DKIM selectors

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxsFyHr9ylgU8JrmDd1qouWHJHPBpOawXK9dfJfD/u2AhdDYkvb4RwhlNJy2wJHIN31X6Njeh5gY5A…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZVy4aJejfNngtzaePuxg4n70lkkgau2ZvzLNW14fylIvIsUDpjCi2frOuTTJa1AfLHV3oCB7gkGa1XJqS…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC6qYANWaDLhK+B7PQe6fTvRUK+HAUH3IkOLI5rLlEMudzFsWwsOZKaIXeOP5g+mal9JcnY7KFRLaaupgEBH26OTS…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2025-11-22 to 2026-12-21

Expires in 216 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.iwoca.de/

present

strict-transport-security
content-security-policy-report-only

findings

missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://js.stripe.com https://*.js.stripe.com https://checkout.stripe.com https://connect-js.stripe.com https://*.googleapis.com https://www.googletagmanager.com https://*.google-analytics.com https://*.website-files.com https://d3e54v103j8qbb.cloudfront.net https://*.onetrust.com https://*.cookielaw.org https://*.visualwebsiteoptimizer.com https://*.iwoca.com https://widget.trustpilot.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://snap.licdn.com https://bat.bing.com https://cdn.amplitude.com https://www.redditstatic.com https://*.fullstory.com https://connect.facebook.net https://*.hs-scripts.com https://*.tiktok.com https://*.intercom.io https://*.hsadspixel.net https://*.hs-analytics.net https://*.hs-banner.com https://*.hubspot.com https://*.doubleclick.net https://*.intercomcdn.com https://*.online-metrix.net https://cdn.datatables.net https://www.datadoghq-browser-agent.com https://*.dwin

Links to (4)

Linked from (1)

vr-smart-guide.de×2