lavaenergy.de

HTML metadata

Technology

Server

Apache

CMS

WordPress

Third-party hosts loaded (1)

• gmpg.org×1

Social

• linkedin
• youtube

Contact

Email

• mieterstrom@lavaenergy.de
• info@lavaenergy.dest
• info@lavaenergy.de

Phone

• +4917645290245
• +4915563472005
• 004917655692849
• +49711248406118

Registration

Updated

2015-07-26

Name servers

• ns.udag.de.
• ns.udag.net.
• ns.udag.org.

DNS records live

NS

• ns.udag.de
• ns.udag.net
• ns.udag.org

MX

• 10 mx01.hornetsecurity.com
• 20 mx02.hornetsecurity.com
• 30 mx03.hornetsecurity.com
• 40 mx04.hornetsecurity.com

TXT

Show 4 TXT records

• google-site-verification=wUkcyy4EfMgCvKl5t7mYGbpA-H48-bXnPYdGbn6ebms
• MS=ms90250623
• google-site-verification=0me1YXX-NJBQhrI3N4K1LR6909WcBoZfAr4At7uf-YU
• google-site-verification=ymZbvVWN_Ikrhl4JZzLhbXcgIpMKNxwCee_G88SmORY

Email authentication strong

SPF

v=spf1 a ip4:62.146.106.0/24 include:spf.protection.outlook.com include:spf.hornetsecurity.com include:spf.crsend.com include:spf.mailjet.com -all

strict (-all)

DMARC

v=DMARC1;p=quarantine

policy: quarantine

DKIM

• selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbz5jfHazKWOIajWhFMlTKUza5bN/Q5XjfLZpItcGQNtLcL/+CyXo8em5+Y4JtbDau01wcQrnmyHZ5v9akA0…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.lavaenergy.de/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (9)

• deneff.org×2
• linkedin.com×2
• minol.de×2
• siedlungswerk-baden-ev.de×2
• vdiv.de×2
• viessmann.de×2
• youtube.com×2
• zenner.de×2
• zia-deutschland.de×2

Linked from (1)

• edlhub.org×2