nha-aue.de

.de crawl

First seen 2026-05-04 · Last seen 2026-05-04 · ok HTTP/1.1 200 2374 ms crawled 2026-05-11

DE · 185.117.251.121 · AS8648 dogado GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

Nickelhütte Aue GmbH - Nickelhütte Aue GmbH

Language

Canonical

https://nha-aue.de/de

Translations

Technology

Third-party hosts loaded (1)

stats.jacobmetal.group×1

Contact

Email

Phone

Registration

Updated

2025-04-01

Name servers

ns2.inwx.de.
ns3.inwx.eu.
ns.inwx.de.

DNS records live

NS

ns.inwx.de
ns2.inwx.de
ns3.inwx.eu

MX

10 mx1-eu1.ppe-hosted.com
20 mx2-eu1.ppe-hosted.com

TXT

Show 5 TXT records

knowbe4-site-verification=7d787486f82f96688efa19d5f01c2477
google-site-verification=7UYDDi2Lhd5v2QqTIYOJGq6yo0Pxvx5ClBD_oRm89Hc
MS=ms22782918
ppe-d4da149442f16ee6995a745c88c175e876a07980
apple-domain-verification=Py0GJMqKuNdKKBhw

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com ip4:62.113.202.242 ip4:185.117.251.121 -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4i161yN3u1eaplExr/yP1DQlnmuIuoduhLLPEZqU/BnIlf6k2t3hSpl1NrjTP1wQrUBwE7s0YLvZYd…

selectors probed

Certificate (current)

R13

from 2026-04-22 to 2026-07-21

Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://nha-aue.de/de

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: same-origin
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(self), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(self), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), speaker-selection=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src script.hotjar.com static.hotjar.com cloud.ccm19.de stats.jacobmetal.group 'unsafe-inline' 'self'; img-src cloud.ccm19.de stats.jacobmetal.group 'self' data: *.nickelhuette-aue.de; style-src cloud.ccm19.de 'self' 'unsafe-inline'; connect-src wss://ws.hotjar.com/api/v2/client/ content.hotjar.io in.hotjar.com vc.hotjar.com cloud.ccm19.de stats.jacobmetal.group *.algolia.net 'self'; media-src *.nickelhuette-aue.de 'self'; frame-ancestors 'self'
strict-transport-security: max-age=31536000; includeSubDomains

Linked from (1)

ehv-aue.de×1