indexo.dev

krabb.pl

.pl crawl

First seen 2026-06-03 · Last seen 2026-06-03 · ok HTTP/1.1 200 385 ms crawled 2026-06-03

NL · 20.105.216.51 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Krabb.pl — Sklep spożywczy online | Darmowa dostawa
Description
Sklep spożywczy online z dostawą tego samego dnia. Ponad 3000 produktów, darmowa dostawa Krabbwiezie. Zamów do 18:00 — dostarczymy dziś!
Language
pl
Canonical
https://krabb.pl

Open Graph

url
https://app-ekstart-web-prod.azurewebsites.net
title
Krabb.pl — Sklep spożywczy online | Darmowa dostawa
locale
pl_PL
site name
Krabb.pl
description
Sklep spożywczy online z dostawą tego samego dnia. Ponad 3000 produktów, darmowa dostawa Krabbwiezie. Zamów do 18:00 — dostarczymy dziś!

Technology

CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • krabbstorageprod.blob.core.windows.net×158
  • krabbstoreks.blob.core.windows.net×24
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
Moszczanka 87g, 08-500, Ryki, PL

DNS records live

NS
  • dns.home.pl
  • dns2.home.pl
  • dns3.home.pl
MX
  • 10 sklep1502964.home.pl

Email authentication weak

SPF
v=spf1 mx a ptr ~all
softfail (~all)
DMARC
not published
DKIM
  • dkim: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MLxn87n3tUr6OoAslGLm9VEc2fw15phqZMDJ1LRcjcK/svPh/aIrihKVTS5kEs+NP64q8Q9TQH24D…
selectors probed

Certificate (current)

E7
from 2026-05-19 to 2026-08-17
Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://krabb.pl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(self), geolocation=(), payment=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://ssl.ceneo.pl https://geowidget.inpost.pl https://*.inpost.pl; style-src 'self' 'unsafe-inline' https://*.inpost.pl; img-src 'self' https://cdn.krabb.pl https://cdn-staging.krabb.pl https://*.ceneo.pl https://*.blob.core.windows.net https://placehold.co https://*.inpost.pl https://*.easypack24.net https://*.openstreetmap.org https://*.tile.openstreetmap.org data: blob:; connect-src 'self' https://api.krabb.pl https://app-ekstart-api-prod.azurewebsites.net https://app-ekstart-api-staging.azurewebsites.net https://www.google-analytics.com https://region1.google-analytics.com https://geowidget.inpost.pl https://*.inpost.pl https://api-shipx-pl.easypack24.net https://*.easypack24.net; frame-src https://secure.przelewy24.pl https://sandbox.przelewy24.pl https://www.google.com https://www.googletagmanager.com https://geowidget.inpost.pl https://*.inpost.pl; worker-src 'self' blob: http
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (2)

Linked from (1)