schock.de

HTML metadata

Title

Spülen, Armaturen & Zubehör für Ihre Küche | SCHOCK Home

Description

SCHOCK ist der Erfinder der Granitspüle aus Quarzkomposit und bietet vielfältige Küchenspülen, Armaturen und Zubehör an.

Language

de

Canonical

https://www.schock.de/deu_de

Translations

de

Open Graph

url: https://www.schock.de/deu_de
title: Spülen, Armaturen & Zubehör für Ihre Küche | SCHOCK Home
locale: de
site name: Spülen, Armaturen & Zubehör für Ihre Küche | SCHOCK Home
description: SCHOCK ist der Erfinder der Granitspüle aus Quarzkomposit und bietet vielfältige Küchenspülen, Armaturen und Zubehör an.

Technology

Server: Apache
CMS: Gatsby

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (4)

snapwidget.com×4
cdn.cookielaw.org×2
unpkg.com×2
www.googletagmanager.com×1

Social

Contact

Email

info@schock.de

Phone

+4999216000

Address

Hofbauerstraße 1, 94209, Regen, BY, DE

Registration

Updated

2024-05-18

Name servers

ns1.nodesecure.com.
ns2.nodesecure.de.

DNS records live

NS

ns1.nodesecure.com
ns2.nodesecure.de

MX

10 mx01.hornetsecurity.com
20 mx02.hornetsecurity.com
30 mx03.hornetsecurity.com
40 mx04.hornetsecurity.com

TXT

201802230737001mc0tp6yb0462apbmfl0ih8qqz513sjkls0wp552rvudgkdzcp
atlassian-sending-domain-verification=05bcf963-6995-43a7-b32c-9a3b4fb46f12
domainsecurity-verification=9442dc2dd9e1f7720cce6c6536aa5dc9081d80f1

Verified for

Anthropic
Atlassian
Brevo
GlobalSign
Microsoft

Email authentication strong

SPF

v=spf1 a mx include:spf.hornetsecurity.com include:spf.sendinblue.com include:_spf.salesforce.com include:agenturserver.de include:spf.sasg.de include:spf-de.emailsignatures365.com ip4:91.106.126.194 ip4:212.34.64.185 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; sp=reject; aspf=s; adkim=s; rua=mailto:dmarc+aggregated@reports.nicmanager.net; ruf=mailto:it@schock.de; fo=1

policy: reject (enforced) · sp=reject

DKIM

selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7YhCYluvqZJhaSugiqBMTgu3dv9CkIkM3mftAYPCA9b24lBlq/MjS3OE3Mt0njh8bEyDgHaMgmBhrv6ajRB…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

E7

from 2026-04-09 to 2026-07-08

Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.schock.de/deu_de

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.facebook.com/; frame-src 'self' carbon.theultimatesink.de www.google.com www.youtube-nocookie.com player.vimeo.com snapwidget.com calendly.com connect.guidecom.de jobs.guidecom.de jobs.schock.de td.doubleclick.net www.googletagmanager.com ct.pinterest.com; default-src 'self' *.doofinder.com carbon.theultimatesink.de data: 'unsafe-inline' 'unsafe-eval' blob: *.schock.de cart.theultimatesink.de *.googleapis.com *.gstatic.com www.googletagmanager.com *.google-analytics.com *.analytics.google.com stats.g.doubleclick.net www.google.com connect.facebook.net www.facebook.com www.google.de www.googleadservices.com googleads.g.doubleclick.net i.vimeocdn.com img.youtube.com i.ytimg.com www.youtube.com www.gstatic.com cx.atdmt.com www.google.ie cdn.cookielaw.org s.ytimg.com www.youtube-nocookie.com noembed.com cdn.plyr.io vimeo.com code.jquery.com cdnjs.cloudflare.com snapwidget.com privacyportal-eu.onetrust.com assets.calendly.com unpkg.com https://api.friendlyca
strict-transport-security: max-age=31536000; includeSubDomains