nabu-shop.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 850 ms crawled 2026-05-19

GB · 91.186.19.85 · AS29550 Team Blue Carrier Limited

Reputation 100/100

Classifying

HTML metadata

Title: Startseite | Willkommen im NABU-Shop
Description: Willkommen im Onlineshop des NABU. Entdecke Nistkästen, Vogelfutter, Gartentier-Produkte, NABU-Merch, Info-Broschüren & vieles mehr. ✓
Language: de
Canonical: https://www.nabu-shop.de

Open Graph

url: https://www.nabu-shop.de
title: Startseite | Willkommen im NABU-Shop
site name: NABU-Shop
description: Willkommen im Onlineshop des NABU. Entdecke Nistkästen, Vogelfutter, Gartentier-Produkte, NABU-Merch, Info-Broschüren & vieles mehr. ✓

Technology

Server: nginx
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Contact

Email

info@nabu-shop.de

Phone

2163 5755270

Address

Zum Eisenhammer 53, 46049, Oberhausen, North Rhine-Westphalia, DE

Registration

Updated

2022-10-17

Name servers

ns1074.ui-dns.biz.
ns1074.ui-dns.com.
ns1074.ui-dns.de.
ns1074.ui-dns.org.

DNS records live

NS

ns1074.ui-dns.biz
ns1074.ui-dns.com
ns1074.ui-dns.de
ns1074.ui-dns.org

MX

0 nabushop-de01b.mail.protection.outlook.com

TXT

u0yy6Q2vVqLeYDwTIC33BGhAwkalpvQxEQxzx8GkkXRHb9Zv7JEImkFmV3bpAXhuxLVOAcT2bR3DFs0nhL8dMw== etEkJIdAKgjzJvcSOMYCRFw4/QH+A==

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:mail.zendesk.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YSh9UIr+WMzZp1oe9pQphWO5hoRcbMWB61gk5VgDYS2C5r6VKMNL2KtrEB+gZaued1d9zfctMul+C…

selectors probed

Certificate (current)

from 2026-04-14 to 2026-07-13

Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.nabu-shop.de/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: font-src www.paypalobjects.com vbn.hyvatest.vivara.com www.vogelbeschermingshop.nl 'self' 'self' data: https://fonts.gstatic.com *.gstatic.com data: 'self' 'unsafe-inline'; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com https://www.facebook.com 'self' 'unsafe-inline'; frame-ancestors vivara.hyvatest.vivara.com *.hyvatest.vivara.com self https: 'self'; frame-src fast.amc.demdex.net *.adobe.com *.youtube.com *.youtube-nocookie.com player.vimeo.com https://www.google.com/recaptcha/ www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com *.xlcdn.com *.sz.xlcdn.com *.jetstre.am takeoff.jetstre.am www.googletagmanager.com 'self' https://consentcdn.cookiebot.com https://www.googletagmanager.com https://open.spotify.com https://www.facebook.com https://connect.facebook.net https://www.googletagmanager.com/ js.mollie.com *.trustpilot.com 'self' 'unsafe-inline'; img-src webcdn.nabu-shop.de assets.adobedtm.com amcglobal.sc.omtrdc.ne