nordlb.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-15 · ok HTTP/1.1 200 1363 ms crawled 2026-05-15

NL · 20.31.232.62 · AS8075 Microsoft Corporation

Reputation 94/100 dmarc monitor-only

sector finance type homepage

HTML metadata

Title

NORD/LB - Creating true value.: NORD/LB

Language

en-US

Generator

TYPO3 CMS

Canonical

https://www.nordlb.com/

Translations

de-de
en-us

Technology

Third-party hosts loaded (1)

www.nordlb.de×2

Social

Registration

Registrar

InterNetX GmbH

Created

1999-02-12

Expires

2027-02-12 268 days left

Updated

2026-02-13

Name servers

ns1.s-fg-net.de
ns2.s-fg-net.com
ns3.s-fg-net.eu
ns4.s-fg-net.de

DNS records live

NS

ns1.s-fg-net.de
ns2.s-fg-net.com
ns3.s-fg-net.eu
ns4.s-fg-net.de

MX

100 mail-1.nordlb.de
100 mail-2.nordlb.de

TXT

Show 18 TXT records

L4nYKBekAg9ZKxN2ww8D6cxg4nC4G8jC
docusign=ead6b731-ec48-49b2-9cfc-636676fa1e1a
TXT=D7jLyCJjwMCRtmGXAT2XK7jfMyZeViWr
_1tz9kci9ts9io6zhk6rip3rdkg6d3l5
TXT-Record=zzcyC6ErBnJXgnNDvNTdZDJzNxdD56tU
_kpptmvlv69zlbqbn99hujsz9py39sbp
QuoVadis=420c578f-ecd7-490b-b2b1-88db5cf79f74
MS=ms28049649
sRtiS3JVL8gsh1zCpp9jdAWZNjDUg1UL
CWhv3ZKzggt7Pa6sQsBk4FAvsKyFJAHQ
hJeZGQ8A0xuGHWcGPJrG3DEwQufdaAzU
vNpM0eH2g1c8GQfBtpLEUB1fYQ9J5wpE
aZdjVSf1g8V4spi7gZgFsnrD00v1u6Ez
ReQLjxBkuavhpePuYvwKEWwinSWD7qrp
yLSWJiLyfhpv0rEKFBZe5t8c1MpDc3Sa
Etcn4dRDXu6qmzaM1W2cQ8A8qKZtCZBF
g7T3NNTQlNtz8H6wjRNiUS40nPK1xxZGhuzzeZrBnbLja9hwAuHRJdUtoAGSF8ZcrLo/wfa5VakxfEeKlfX36w==
TXT=mqHBPJhpwnCDTjweuFnfJXMyPSvK5m7D

Email authentication partial

SPF

v=spf1 a mx include:spf.mail.s-web.de include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:ees@nordlb.de

policy: none (monitoring only)

DKIM

s1: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCjSOkVNjvHxJXm6TlYiVhl/xn+34lEV3K18cwv+7GPYBUSTAgVOTvBXua051Vm7F3wAdYfFd+ibiZEaunSBQgZHkyEt…

selectors probed

Certificate (current)

Atos TrustedRoot Server CA RSA 2022

from 2026-04-01 to 2026-10-13

Expires in 147 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.nordlb.com/

present

strict-transport-security
content-security-policy
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' https://cdn.trackboxx.info 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://nordlb.de https://*.nordlb.de https://nordlb.com https://*.nordlb.com https://hit.trackboxx.info; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://mailing.nordlb.de; media-src 'self' blob:; script-src-elem 'self' https://cdn.trackboxx.info 'report-sample'; style-src 'self' 'sha256-GqiEX9BuR1rv5zPU5Vs2qS/NSHl1BJyBcjQYJ6ycwD4=' 'sha256-imM3HZi7Y+FaJ86tYMKkfeIFtkVV27aGv/h/xsSiOkI=' 'sha256-B6s7c9GN+kYMLD8pbbmA1VDEDGPFLtfUgjJXeCGLuNk=' 'report-sample'; worker-src blob: 'report-sample'; connect-src 'self' https://hit.trackboxx.info; object-src 'none'; form-action 'self'; frame-ancestors 'self'; report-uri https://www.nordlb.de/@http-reporting?csp=report&requestTime=1778872277265081&requestHash=ccb0bb9610654ef8a8874f9703f4645ebf216aa4
strict-transport-security: max-age=31536000; includeSubDomains

Links to (8)

Linked from (1)

nordlb.de×2