indexo.dev

kredittbanken.no

.no crawl

First seen 2026-05-31 · Last seen 2026-06-03 · ok HTTP/1.1 200 791 ms crawled 2026-06-01

NO · 5.145.153.47 · AS59438 99x Increo As

Reputation 100/100

Classifying

HTML metadata

Title
Kredittbanken ASA | Kredittbanken
Description
Kredittbanken er eid av rundt 70 norske sparebanker. Gjennom våre eierbanker og partnere tilbyr vi kredittkort, refinansiering og forbrukslån.
Language
no

Open Graph

title
Kredittbanken ASA
locale
no_NB
description
Kredittbanken er eid av rundt 70 norske sparebanker. Gjennom våre eierbanker og partnere tilbyr vi kredittkort, refinansiering og forbrukslån.

Technology

Server
nginx
CMS
Next.js
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • cdn.sanity.io×11
  • fonts.googleapis.com×3
  • api.fontshare.com×2
  • fonts.gstatic.com×1

Social

DNS records live

NS
  • ns-1218.awsdns-24.org
  • ns-1741.awsdns-25.co.uk
  • ns-254.awsdns-31.com
  • ns-824.awsdns-39.net
MX
  • 10 de-smtp-inbound-1.mimecast.com
  • 10 de-smtp-inbound-2.mimecast.com
TXT
Show 5 TXT records
  • my2jx2z2EQpcnBDF35oBqmpkRY72hJ8KUA8ZR5u6bw/LvyhjUIMVvfM8P/SctJSdOf5qgOxJHeJfO3B8H7LUUA==
  • 0ed1fe018aba5fd94ae853450a9e716e65a374a0b5
  • _7z9ds5kez44ys0vw3eg2w6a2fa2ghiy
  • _iw3ynqugko82wqhau61r67wo4364xdp
  • _zspx0kb3hk6u8dqqty9vvn9mjo2jrgv
Verified for
  • Atlassian
  • Figma
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:de._netblocks.mimecast.com include:_spf_1.sparebank1.no include:_spf_2.sparebank1.no include:_spf_3.sparebank1.no include:spf.protection.outlook.com include:_spf.sndr.no include:146918376.spf05.hubspotemail.net -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc-reports@sparebank1.no; ruf=mailto:dmarc-forensic@sparebank1.no; adkim=r; aspf=r; ri=7200;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-24 to 2026-07-23
Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://kredittbanken.no/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=(), midi=(), magnetometer=(), gyroscope=(), payment=(), fullscreen=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src *; font-src *; frame-src *; frame-ancestors 'self' https://sanity.io https://www.sanity.io; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (2)

Linked from (4)