nava.app

.app crawl

First seen 2026-05-03 · Last seen 2026-05-10 · ok HTTP/1.1 200 2490 ms crawled 2026-05-10

DE · 80.70.184.110 · AS34372 VegaSystems GmbH & Co. KG

Reputation 100/100

sector tech type homepage

HTML metadata

Title

Vermessung mit dem Smartphone - NAVA

Description

Die App NAVA dient der Vermessung von Hausanschlüssen mit dem Smartphone per Augmented Reality für einen digitalen Prozess bis ins GIS.

Language

de-DE

Generator

Divi v.4.27.6

Canonical

https://nava.app/

Translations

Feeds

NAVA » Feed RSS
NAVA » Kommentar-Feed RSS

Open Graph

url: https://nava.app/
title: Vermessung mit dem Smartphone - NAVA
locale: de_DE
site name: NAVA
description: Die App NAVA dient der Vermessung von Hausanschlüssen mit dem Smartphone per Augmented Reality für einen digitalen Prozess bis ins GIS.
locale:alternate: en_GB

Technology

Server: Apache
CMS: WordPress

Contact

Phone

DNS records live

NS

ns1.vegasystems.de
ns2.vegasystems.net

MX

0 nava-app.mail.protection.outlook.com

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:o1.ptr3308.nava.app include:manager.nava.app ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;pct=80;fo=1;rua=mailto:rua-334211@nava.app;adkim=r;aspf=r

policy: quarantine · pct=80

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08zKxvGypJr5IB2e5h4C0ssz7r2mT++Px8AnZR77HthtnlG5+mzJWtpS49MuyPas5ErmCiQtIhuPFfSkpB…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQK2l/vpw4pj8rkUH9WrehmRAORTbg356pI0guf4i2HYYkrImBOnVv6MBUIClY7JzL5d68Q91rYEUndCKjg8bdI3…

selectors probed

Certificate (current)

R12

from 2026-05-04 to 2026-08-02

Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://nava.app/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), gyroscope=(), magnetometer=(), microphone=(),payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com
strict-transport-security: max-age=63072000; includeSubDomains

Links to (3)

Linked from (1)

its-service.de×1