indexo.dev

mbank.cz

.cz crawl

First seen 2026-05-27 · Last seen 2026-05-31 · ok HTTP/1.1 200 791 ms crawled 2026-05-30

PL · 195.42.249.22 · AS13274 MBANK S.A.

Reputation 100/100

Classifying

HTML metadata

Title
Digitální banka pro moderní život | osobní finance | mBank.cz
Description
mKonto zdarma, mPůjčka bez papírů, mHypotéky online, spoření i investice – vše na jednom místě. ✅ mBank je banka, která drží krok s vámi.
Language
cs
Generator
StartWeb6.0
Canonical
https://www.mbank.cz/osobni/
Translations
  • cs
  • en
  • pl
  • sk
  • uk

Technology

Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • www.mbank.pl×3
  • www.googletagmanager.com×1
  • www.mbank.sk×1

Social

Registration

Registrar
REG-WEBGLOBE
Created
2005-11-14
Expires
2026-11-13 165 days left
Updated
2022-11-30
Name servers
  • a11-66.akam.net
  • a1-170.akam.net
  • a16-67.akam.net
  • a18-64.akam.net
  • a5-67.akam.net
  • ns1.ikp.pl

DNS records live

NS
  • a1-170.akam.net
  • a11-66.akam.net
  • a16-67.akam.net
  • a18-64.akam.net
  • a5-67.akam.net
  • ns1.ikp.pl
MX
  • 0 war01mail1.brebank.com.pl
  • 0 war01mail2.brebank.com.pl
TXT
  • edH3ppP23gCVfYCAX2ICR6dk5q/TAqXfppuMiWthRghWjHETQN5bckniscNTWwFkR/LLGunE8dSSjBeVd67ARw==
  • _m44ly5ng86ajgqkv4g74rky7mstl69m
Verified for
  • Microsoft 365
  • Miro

Email authentication strong

SPF
v=spf1 ip4:193.41.230.0/24 ip4:213.180.131.38 ip4:213.180.147.136 ip4:213.180.147.137 ip4:213.180.147.179 ip4:213.180.147.180 ip4:195.187.134.88 ip4:85.194.245.219 ip4:31.186.86.250 include:d1.mail.mbank.pl mx -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;sp=quarantine;fo=1:d:s;pct=100;rua=mailto:dmarc-reports@mbank.pl;ruf=mailto:dmarc-reports@mbank.pl;adkim=r;aspf=r;ri=43200
policy: quarantine · sp=quarantine
DKIM
no key found at common selectors

Certificate (current)

DigiCert EV RSA CA G2
from 2026-01-14 to 2027-01-23
Expires in 236 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.mbank.cz/osobni/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
base-uri https://www.mbank.cz; report-uri https://wwwcz.csp.mbank.pl; default-src 'none'; upgrade-insecure-requests; block-all-mixed-content; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://ad.doubleclick.net https://c.imedia.cz https://c.seznam.cz https://cdn.mbiscuit.mbank.cz https://cdn.skp.mbank.pl https://connect.facebook.net https://googleads.g.doubleclick.net https://maps.googleapis.com https://pagead2.googlesyndication.com https://r.skp.mbank.pl https://s.ytimg.com https://s2.adform.net https://script.hotjar.com https://ssl.google-analytics.com https://static.hotjar.com https://stats.g.doubleclick.net https://tagmanager.google.com https://tpc.googlesyndication.com https://track.adform.net https://www.facebook.com https://www.google-analytics.com https://www.google.com https://www.googleadservices.com https://www.googletagmanager.com https://www.mbank.cz https://www.youtube.com; style-src 'self' 'unsafe-inline' https://cdn.skp.mbank.pl https://fonts.googleapis.com https:
strict-transport-security
max-age=15552000

Links to (8)

Linked from (5)