indexo.dev

nordeafinance.se

.se crawl

First seen 2026-05-23 · Last seen 2026-05-31 · ok HTTP/1.1 200 744 ms crawled 2026-05-28

FI · 158.233.250.69 · AS201271 Nordea Bank Abp

Reputation 100/100

Classifying

HTML metadata

Title
Nordea Finance Privat | Nordea Finans
Description
Nordea Finance Privat
Language
sv-SE
Canonical
https://www.nordeafinance.se/

Open Graph

url
https://www.nordeafinance.se/
title
Nordea Finance Privat
locale
sv_SE
description
Nordea Finance Privat

Technology

Server
nginx
CMS
Gatsby
Stack
Java

Third-party hosts loaded (1)

  • tags.tiqcdn.com×1

Contact

Phone

DNS records live

NS
  • ns0.nordea.com
  • ns1.nordea.com
  • ns2.nordea.com
  • spdns3.cscdns.net
Verified for
  • Adobe
  • Google

Email authentication no MX

SPF
v=spf1 -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; ri=3600; rua=mailto:nordea@rua.agari.com; ruf=mailto:nordea@ruf.agari.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert G2 TLS EU RSA4096 SHA384 2022 CA1
from 2026-02-17 to 2027-02-17
Expires in 261 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.nordeafinance.se/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self';script-src 'nonce-ade5930f-f3f1-4cc9-937f-87b9dc09188f' 'strict-dynamic' https: 'unsafe-inline' 'unsafe-eval';connect-src 'nonce-ade5930f-f3f1-4cc9-937f-87b9dc09188f' https: 'unsafe-inline';style-src * 'unsafe-inline'; img-src * data:; font-src * data:;frame-src *.demdex.net *.skat.dk;
strict-transport-security
max-age=157680000

Links to (7)

Linked from (2)