indexo.dev

loxam.de

.de crawl

First seen 2026-04-12 · Last seen 2026-05-07 · ok HTTP/1.1 200 5535 ms crawled 2026-05-05

NL · 20.31.112.23 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Vermietung und Verkauf von Material für den Hoch- und Tiefbau und die Industrie - Loxam
Description
Als Spezialist für die Vermietung von professioneller Ausrüstung bietet LOXAM Privatkunden, Unternehmen und Handwerkern ein sehr umfassendes Angebot: Verleih von Minibaggern, Motorsägen, Hebebühnen, Sandstrahlgebläsen etc.
Language
de
Translations
  • da-dk
  • de-ch
  • de-de
  • fr-be
  • fr-ch
  • fr-fr
  • nl-be
  • nl-nl

Technology

Server
*
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (12)
  • medias.loxam.com×22
  • fonts.googleapis.com×5
  • www.googletagmanager.com×3
  • www.loxam.be×2
  • www.loxam.ch×2
  • fonts.gstatic.com×1
  • loxam.api.useinsider.com×1
  • maps.googleapis.com×1
  • unpkg.com×1
  • www.loxam.dk×1
  • www.loxam.fr×1
  • www.loxam.nl×1

Social

Contact

Address
89 Avenue de la Grande Armée, 75219, PARIS Cedex 16, France

Registration

Updated
2024-12-11
Name servers
  • ns1.safebrands.fr.
  • ns2.safebrands.eu.
  • ns3.safebrands.com.
  • ns4.safebrands.org.
  • ns5.safebrands.tech.

DNS records live

NS
  • ns1.safebrands.fr
  • ns2.safebrands.eu
  • ns3.safebrands.com
  • ns4.safebrands.org
  • ns5.safebrands.tech
MX
  • 10 mx1.loxgroup.com
  • 10 mx2.loxgroup.com
TXT
  • v=spf1 mx a ip4:109.26.223.93 include:spf.protection.outlook.com include:_spf.salesforce.com -all
  • google-site-verification=idGx6Rq2AJh0cKET4zlcxFkcpQ-k5edyRi9AhxYJo8c
  • apple-domain-verification=kvmDUkznkvVh8FZJ

Certificate (current)

Sectigo Public Server Authentication CA EV R36
from 2026-03-04 to 2027-03-05
Expires in 289 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.loxam.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'nonce-Nr0haDQogH/U33Ji2emBV8xuf7gsEcShe0Rf4WBXfJo=' 'unsafe-inline' 'unsafe-eval' https://www.google.com/recaptcha/api.js https://*.loxam.com https://loxam.com https://*.model-t.cc.commerce.ondemand.com https://fonts.googleapis.com https://maps.gstatic.com https://www.googletagmanager.com/gtm.js https://www.google.com/recaptcha/* https://maps.googleapis.com/maps/api/js https://www.gstatic.com/recaptcha/* https://*.useinsider.com https://*.matomo.cloud https://*.evgnet.com https://*.algolia.net https://*.algolianet.com https://widgets.custplace.com/ https://script.hotjar.com https://*.hotjar.com https://halc.iadvize.com https://*.iadvize.com https://stats.webleads-tracker.com https://get.smart-data-systems.com https://*.smart-data-systems.com https://eqy.link https://userlink.ai https://*.userlink.ai https://elfsightcdn.com https://*.elfsight.com ;script-src-attr 'unsafe-inline'; style-src 'self' 'unsafe-inline' https: data:; img-src 'self' https:
strict-transport-security
max-age=31536000 ; includeSubDomains

Links to (11)

Linked from (2)