sbroker.de

HTML metadata

Title: Online Broker - Aktien günstig online handeln | S Broker
Description: S Broker - Top Online Broker der Sparkassen-Finanzgruppe - günstige Konditionen und professioneller online Wertpapierhandel - börslich und außerbörslich.
Language: de
Canonical: https://sbroker.de

Technology

CDN: Cloudflare
CMS: Drupal

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Registration

Updated

2019-11-19

Name servers

fred.ns.cloudflare.com.
nia.ns.cloudflare.com.

DNS records live

NS

fred.ns.cloudflare.com
nia.ns.cloudflare.com

MX

Show 6 MX records

10 mx.emea.email.fireeyecloud.com
20 primary.emea.email.fireeyecloud.com
30 alt1.emea.email.fireeyecloud.com
40 alt2.emea.email.fireeyecloud.com
50 alt3.emea.email.fireeyecloud.com
60 mailin.deka.de

TXT

Show 15 TXT records

apple-domain-verification=FAetjg065kXArqva
_globalsign-domain-verification=d915Zf9vyPDaE24ndFfvJNWIzzk64hjtL2n4ktAzae
_globalsign-domain-verification=FEweA-_KfSNx0s8YRykBibZdA5qevnzxx8Tb72tvFO
_globalsign-domain-verification=hz9i060hfNhqBbnJrttA8_L1v7UYMzArTkVQVOp1kv
cisco-ci-domain-verification=6f0d9193de9b842fdb3476cf0736a936e3d592730889e3b985e563d6f0f28055
x8rhr2s1q8v2hb4bbgwph5wttyq0ky3m
_telesec-domain-validation=F44B1478B028F105D5BFCA207C4A29D24C3B79B344999BD53D6816DDEF882DED
g9ghktvcvknfyjkj37xh62xsm46jxv95
_globalsign-domain-verification=kVYHHv0SUTIn44baP4vFWxEvbtdAvb9yjJCFgeqalF
MS=ms55831505
4td83dkyjs91dfs5h0x4jrdt6c8z4cdl
7weKwrF4m02yhhfXUkFNDVfui3X11J6yCbtixkRvvg4=
google-site-verification=4eJvN6UOpZjuuCwEXHs-9ku7RJSeC3eNUsAF7Wj3fGk
1d1527269d9d7bb5bd56ccb1544e329e744628b0f9a64ec81c2f43ac42496cc
MS=437CCB59964F2206A3B7E8E17E9052BD1AB91E9E

Email authentication partial

SPF: v=spf1 include:spf.mailjet.com mx a ip4:192.166.106.55 ip4:212.144.98.0/24 ip4:91.202.48.0/22 ip4:145.253.167.112/28 ip4:217.19.186.176/28 include:spf.servicemail24.de ?all
neutral (?all)
DMARC: v=DMARC1; p=none; rua=mailto:Spoofing-reports@deka.de ; adkim=s; aspf=s
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

GlobalSign GCC R6 AlphaSSL CA 2025

from 2026-02-06 to 2027-03-10

Expires in 295 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.sbroker.de/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection

Header values

referrer-policy: no-referrer
permissions-policy: geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), fullscreen=(self), payment=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.s-comfortdepot.de *.doubleclick.net *.google.com *.youtube.com *.cookiebot.com *.google-analytics.com drupal-test.sbroker.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.s-comfortdepot.de *.cookiebot.com *.financeads.net *.google.com *.googletagmanager.com *.googleadservices.com *.google-analytics.com de *.googlesyndication.com *.doubleclick.net *.googletagservices.com *.smartadserver.com widget.moin.ai script.ioam.de kit.fontawesome.com connect.facebook.net www.facebook.com www.gstatic.com analytics.tiktok.com *.adsrvr.org *.taboola.com bat.bing.com *.adform.net chatbot.deka.de chatbot.sbroker.de *.trustpilot.com *.youtube.com; style-src 'unsafe-inline' *.s-comfortdepot.de *.sbroker.com *.sbroker.de *.sbroker.net *.googleapis.com https://widget.moin.ai; img-src * https://www.googletagmanager.com data: *.trustpilot.com; font-src 'self' data: *.gstatic.com *.sbroker.de *.sbroker.com *.s-comfortdepot.de *.sbroker.net https://widget.moin.ai https://ka-p.fontawe
strict-transport-security: max-age=157680000; includeSubDomains; preload