indexo.dev

pompeji-experience.com

.com crawl

First seen 2026-04-23 · Last seen 2026-05-14 · ok HTTP/1.1 200 2999 ms crawled 2026-05-17

US · 18.165.140.74 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Die letzten Tage von Pompeji Ausstellung
Description
Besuche Pompeji in Deutschland und Schweiz! Tauche ein in die antike Geschichte der gut erhaltenen Relikte aus der römischen Stadt.
Language
de-DE
Generator
Astro v5.7.11
Canonical
https://pompeji-experience.com/
Translations
  • de
  • en

Open Graph

url
https://pompeji-experience.com/
title
https://pompeji-experience.com/
description
Besuche Pompeji in Deutschland und Schweiz! Tauche ein in die antike Geschichte der gut erhaltenen Relikte aus der römischen Stadt.

Technology

CDN
Amazon CloudFront
Server
AmazonS3
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Contact

Email

Registration

Registrar
GoDaddy.com, LLC
Created
2024-06-12
Expires
2026-06-12 23 days left
Updated
2025-06-13
Name servers
  • ns-1080.awsdns-07.org
  • ns-1838.awsdns-37.co.uk
  • ns-478.awsdns-59.com
  • ns-833.awsdns-40.net

DNS records live

NS
  • ns-1080.awsdns-07.org
  • ns-1838.awsdns-37.co.uk
  • ns-478.awsdns-59.com
  • ns-833.awsdns-40.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
  • google-site-verification=UQIDesPPZ_yC8eONa2j_TzGHoVxJYplPDqjpbLA_jJo
  • google-site-verification=VruerCS7LTJ2Hvjp4R-j82qVWQDjZwqhGjiIV42xUVQ

Email authentication weak

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Amazon RSA 2048 M04
from 2026-04-15 to 2026-10-30
Expires in 163 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://pompeji-experience.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' https://* data: wss://*.hotjar.com; frame-ancestors 'none'
strict-transport-security
max-age=31536000; includeSubDomains,max-age=63072000; includeSubdomains; preload

Links to (3)

Linked from (1)