indexo.dev

monarkexercise.se

.se crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 123 ms crawled 2026-06-04

SE · 46.16.232.233 · AS44136 ODERLAND Webbhotell AB

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Monark Exercise - For life and performance
Description
Monark Exercise | Sports & Medical - professional ergometers for sport, health and rehab. Measurement-accurate, reliable, made in Sweden.
Language
sv-SE
Generator
WordPress 7.0
Canonical
https://monarkexercise.se/
Feeds

Open Graph

url
https://monarkexercise.se/
title
Monark Exercise - For life and performance
locale
sv_SE
site name
Monark Exercise
description
Monark Exercise | Sports & Medical - professional ergometers for sport, health and rehab. Measurement-accurate, reliable, made in Sweden.
updated time
2025-11-14T16:21:26+00:00

Technology

Server
LiteSpeed
CMS
WordPress 7.0
PHP
7.4.33 end of life
jQuery
3.7.1
Fonts
  • Google Fonts

Third-party hosts loaded (2)

  • fonts.googleapis.com×1
  • gmpg.org×1

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 0 monarkexercise-se.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com include:all._spf.plma.se -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCINljnN4sKbjQpEhRQRUZ/Giu+reMBrr88KpJlpeEGitwHA0yubPivBykgGBr/lT5qqhuEBzA45STR039A74…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7RRDLle0cd2/f8/twhnZeXtz/Qem4mSkWP7WYUJBK+aLp8cKhwywUP/X/AzcU2c1sbTtK+p0aho0nZ…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jBJlENkScYxMrP8caRwl/vDfmWQhtoO5GKd9q0pQMSOr6mPfTJkl205Gfu9MlVj7ZydrXsmBfVrZEfvnf…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCeh/tbSL4K9mLig3G7gi4SGDYfiMJ/7az8OKZAcRLdufDSHhXmL1EZW2848o98+BNi+49jVNJP3r0MJQ9rdFrSU+…
selectors probed

Certificate (current)

R12
from 2026-05-01 to 2026-07-30
Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://monarkexercise.se/

present
  • content-security-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
content-security-policy
script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://www.paypalobjects.com/ https://s3.amazonaws.com/ https://*.stripe.com/ https://*.list-manage.com/ http://*.marketingautomation.services/ https://*.marketingautomation.services/ http://*.hotjar.com/ https://*.hotjar.com/ http://*.marketingautomation.services/ https://*.marketingautomation.services/ http://tag.perfectaudience.com/ http://pixel-geo.prfct.co/ https://*.hs-analytics.net/ https://*.hsappstatic.net/ https://*.hs-scripts.com/ https://*.hs-banner.com/ https://*.hsadspixel.net/ https://*.hscollectedforms.net/ https://*.hsleadflows.net/ https://stats.wp.com/ https://*.typekit.net/ https://pixel-geo.prfct.co/ https://monarkcargo-modul.realcontent.se/ https://cdnjs.cloudflare.com/ https://stats.wp.com/ https://*.marketingautomation.services/ https://*.funnelbud.com/; img-src 'self' data: blob: http://monarkexercise.se/ https://monarkexercise.se/ https://www.paypalobjects.com/ https://*.typekit.net/ https://pixel-ge

Links to (3)

Linked from (1)