indexo.dev

lopimastercard.dk

.dk crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 838 ms crawled 2026-06-02

NL · 20.31.244.136 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
LOPI Mastercard
Language
da-DK
Generator
Microsoft SharePoint
Canonical
https://www.lopimastercard.dk:443/Sider/default.aspx

Technology

Server
Microsoft-IIS
ASP.NET
4.0.30319
jQuery
3.2.0 known XSS (<3.5)
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

DNS records live

NS
  • ns.dandomain.dk
  • ns2.dandomain.dk
TXT
  • UD0Fq+t9DKNzrQq/jSvbg227AWhHgqt2RcOvvcO6RBg=
Verified for
  • GlobalSign

Email authentication no MX

SPF
v=spf1 -all
strict (-all)
DMARC
v=DMARC1; p=reject; adkim=s; aspf=s;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

GlobalSign RSA OV SSL CA 2018
from 2026-01-19 to 2027-02-20
Expires in 261 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.lopimastercard.dk/Sider/default.aspx

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' teams.microsoft.com *.teams.microsoft.com *.skype.com *.teams.microsoft.us local.teams.office.com *.powerapps.com *.yammer.com *.officeapps.live.com *.office.com *.stream.azure-test.net *.microsoftstream.com *.dynamics.com *.microsoft.com onedrive.live.com *.onedrive.live.com;

Links to (1)

Linked from (1)