indexo.dev

mitarbeitervorteile.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-19 · ok HTTP/1.1 200 4995 ms crawled 2026-05-08

ES · 34.175.110.22 · AS396982 Google LLC

Reputation 100/100

Classifying

HTML metadata

Title
Mitarbeitervorteile
Language
de-DE
Generator
WPML ver:4.8.6 stt:1,3;
Canonical
https://mitarbeitervorteile.de/

Open Graph

url
https://mitarbeitervorteile.de/
title
Mitarbeitervorteile
locale
de_DE
site name
Mitarbeitervorteile
updated time
2026-04-23T06:16:52+00:00

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.gstatic.com×3
  • fonts.googleapis.com×2
  • www.googletagmanager.com×1

Registration

Updated
2026-02-17
Name servers
  • a.ns14.net.
  • b.ns14.net.
  • c.ns14.net.
  • d.ns14.net.

DNS records live

NS
  • a.ns14.net
  • b.ns14.net
  • c.ns14.net
  • d.ns14.net
MX
  • 0 mitarbeitervorteile-de.mail.protection.outlook.com
TXT
Show 6 TXT records
  • MS=ms49780484
  • Pysedi75bZhfffAWG+vJ6ai/zl4iJBM6QSWVzvLcKnw=
  • google-site-verification=_ciM28uS-fQt5E_xuxhnlLZ-5XrDTdV4Da9FZ7agT-M
  • zst5fypsty21q4jhvs36szr32g2s5js6
  • google-site-verification=rOxTkqkrB_YNzOewJ4NclKUauo40KuVJfB6BlMDPhuk
  • google-site-verification=a2CHwUOJ3NElJVMe8eO_IwWau0T7EwOcdgUX1XpnKEE

Email authentication strong

SPF
v=spf1 include:_spf.colectivosvip.com include:_spf.google.com include:spf.protection.outlook.com include:servers.mcsv.net -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=85; fo=1; rua=mailto:sistemas@vipdistrict.com;
policy: reject (enforced) · pct=85
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqszOP5p31EkGByYpa6E/YC6fpgGrAWqB8khZ50PuykIfaAPdFtf40sUdPc89ziQpbgqPwYsDDn/g3h…
selectors probed

Certificate (current)

R13
from 2026-05-07 to 2026-08-05
Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://mitarbeitervorteile.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=()
x-content-type-options
nosniff
content-security-policy
default-src https: wss: data: 'unsafe-inline' 'unsafe-eval'; script-src 'unsafe-inline' 'unsafe-eval' 'self' *.stackpathcdn.com *.vipbonus.it static.zdassets.com *.google.com www.googleadservices.com googleads.g.doubleclick.net api.eu-1.smooch.io static.zdassets.com cdn.ckeditor.com oss.maxcdn.com d3js.org gyrocode.github.io ws.sharethis.com *.netdna-ssl.com *.hotjar.com c64.assets-yammer.com unpkg.com *.googleapis.com *.google-analytics.com *.colectivosvip.com code.jquery.com cdnjs.cloudflare.com cdn.jsdelivr.net *.gstatic.com *.vimeo.com stats.g.doubleclick.net *.googletagmanager.com cdn.tiny.cloud cdn.datatables.net maxcdn.bootstrapcdn.com momentjs.com stackpath.bootstrapcdn.com clubandalbrok.com www.clubandalbrok.com; img-src data: blob: 'self' *.colectivosvip.com *.vipdistrict.com *.googleapis.com *.gstatic.com *.googleusercontent.com *.vipbonus.it static.zdassets.com *.tinymce.com *.eulen.com *.google.com *.google-analytics.com *.google.es code.jquery.com cdnjs.cloudflare.com cdn
strict-transport-security
max-age=4838400; includeSubdomains;

Links to (2)

Linked from (4)