kruut.de

.de crawl

First seen 2026-04-18 · Last seen 2026-05-12 · ok HTTP/1.1 200 2230 ms crawled 2026-05-12

CA · 23.227.38.65 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Kruut
Description: Die Kraft heimischer Wildkräuter neu entdeckt. Kräuterauszüge. 100% Bio. Bewährte Rezeptur. Naturbelassen. Ohne Zusatzstoffe. Handgefertigt in Berlin.
Language: de
Canonical: https://kruut.de/

Open Graph

url: https://kruut.de/
title: Kruut
site name: kruut
description: Die Kraft heimischer Wildkräuter neu entdeckt. Kräuterauszüge. 100% Bio. Bewährte Rezeptur. Naturbelassen. Ohne Zusatzstoffe. Handgefertigt in Berlin.

Technology

CDN: Cloudflare
CMS: Shopify

Third-party hosts loaded (13)

cdn.jsdelivr.net×4
cdn.shopify.com×3
shop.app×2
widget.reviews.io×2
fonts.shopifycdn.com×1
monorail-edge.shopifysvc.com×1
play.gotolstoy.com×1
productreviews.shopifycdn.com×1
static.klaviyo.com×1
subscription-admin.appstle.com×1
trck.linkster.co×1
unpkg.com×1
widget.gotolstoy.com×1

Social

Contact

Email

hey@kruut.de

Phone

25211796226315

Registration

Updated

2026-02-24

Name servers

docks11.rzone.de.
shades06.rzone.de.

DNS records live

NS

docks11.rzone.de
shades06.rzone.de

MX

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com

TXT

Show 5 TXT records

apple-domain-verification=hXcHkAPAJODozgqW
google-site-verification=BPQNDZ9KtJDwi6Bj5vDvabUYkrHief6ARrbZch5B7Zc
klaviyo-site-verification=XwyiEp
google-site-verification=27WKVCEU_MyjajYSw1jJ87UF3lGBDf4l6OoEKJaqCfU
MS=ms47463704

Email authentication partial

SPF: v=spf1 include:mailgun.org include:_spf.google.com include:spf.klaviyo.com include:shops.shopify.com ~all
softfail (~all)
DMARC: v=DMARC1; p=none; rua=mailto:dmarc@kruut.de
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

from 2026-04-06 to 2026-07-05

Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://kruut.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238

Links to (6)

Linked from (1)

elba-conference.com×2