nymwag.cz

.cz crawl

First seen 2026-05-19 · Last seen 2026-05-29 · ok HTTP/1.1 200 14739 ms crawled 2026-05-25

CZ · 81.91.84.119 · AS39790 Web4U s.r.o.

Reputation 92/100 no dmarc policy

sector manufacturing type homepage

HTML metadata

Title: NYMWAG
Description: Český výrobce nákladních železničních vagonů s evropským modem operandi.
Language: cs

Open Graph

url: https://nymwag.cz//
title: Úvod
site name: NYMWAG
description: Český výrobce nákladních železničních vagonů s evropským modem operandi.

Technology

Server: nginx
CMS: Gatsby
Stack: PHP

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (2)

use.typekit.net×1
www.googletagmanager.com×1

Contact

Email

info@nymwag.cz

Phone

+420800180188

DNS records live

NS

ns.wedos.com
ns.wedos.cz
ns.wedos.eu
ns.wedos.net

MX

5 nymwag-cz.mail.protection.outlook.com

Verified for

Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOfiv/uoNyhwhxUBS+UY5Apfg9yCvv0mvGh63JuGeOFDrtcHJz/So0L7/4SnQSeJl90ew7jOfwKKWk…

selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 80/100 Checked live page: https://nymwag.cz/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://*.googleapis.com/ https://www.google-analytics.com/ https://www.googletagmanager.com/ https://*.google.com/ https://*.youtube.com/ https://*.gstatic.com/ https://*.cloudflare.com/ https://*.bootstrapcdn.com/ https://*.klicenka.uvm.cz/ https://*.doubleclick.net/ https://*.mapy.cz/ https://connect.facebook.net/ https://*.facebook.com/ https://cdn.jsdelivr.net/ https://*.typekit.net/ ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.googleapis.com/ https://www.google-analytics.com/ https://www.googletagmanager.com/ https://*.google.com/ https://*.youtube.com/ https://*.gstatic.com/ https://*.cloudflare.com/ https://*.bootstrapcdn.com/ https://*.klicenka.uvm.cz/ https://*.doubleclick.net/ https://*.mapy.cz/ https://connect.facebook.net/ https://*.facebook.com/ https://cdn.jsdelivr.net/ https://*.typekit.net/ ; connect-src 'self' https://*.googleapis.com/ https://www.google-analytics.com/ https://www.googletagmanager.com/ https://*.google.com/ https://*.
strict-transport-security: max-age=2592000; includeSubDomains

Links to (21)

Linked from (2)

nymwag.com×1
unife.org×1