luudoo.de

.de crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 488 ms crawled 2026-06-01

DE · 18.185.65.13 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector gaming type homepage

HTML metadata

Title: LUUDOO - Personalisierte Spiele
Description: Gestalten Sie ein personalisiertes Spiel: Ihre Fotos in über 50 klassischen Brett- und Kartenspiele, Puzzlen, auf Spielsteinen, Würfeln und anderem Spielezubehör. Verschenken Sie ein individuell produziertes Unikat!
Language: de

Technology

Server: nginx
CMS: Gatsby
PHP: 8.1.23 end of life

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×5
www.googletagmanager.com×2
app.trustami.com×1
cdn.trustami.com×1

Contact

Email

support@luudoo.de

Registration

Updated

2015-08-05

Name servers

ns1.first-ns.de.
robotns2.second-ns.de.
robotns3.second-ns.com.

DNS records live

NS

ns1.first-ns.de
robotns2.second-ns.de
robotns3.second-ns.com

MX

10 mail.luudoo.de

Email authentication partial

SPF

v=spf1 a mx ~all

softfail (~all)

DMARC

v=DMARC1;p=none;sp=none;pct=50;adkim=r;aspf=r;

policy: none (monitoring only) · pct=50 · sp=none

DKIM

default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2KcX50z0VriSC/AAAQPZcv3DqCCjjteDMp0Lhv2xreZnsuQNTVCwzhAWrQPplbxRTq1FGNfG9o8PU1Bw0lPMw…

selectors probed

Certificate (current)

R13

from 2026-04-14 to 2026-07-13

Expires in 40 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://luudoo.de/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: font-src https://www.googletagmanager.com *.googleapis.com *.gstatic.com *.trustami.com maxcdn.bootstrapcdn.com *.fontawesome.com *.fonts.googleapis.com data: *.cloudflare.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * https://plumrocket.com 'self' 'unsafe-inline'; frame-ancestors *.meetanshi.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.co

Links to (1)

luudoo.com×1

Linked from (2)

luudoo.com×1
geschenkpanda.de×1