scrist.de
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (3)
- cdn.jsdelivr.net×4
- cdn.datatables.net×2
- code.jquery.com×1
Social
Registration
- Updated
- 2013-02-27
- Name servers
-
- docks15.rzone.de.
- shades05.rzone.de.
DNS records live
- NS
-
- docks15.rzone.de
- shades05.rzone.de
- MX
-
- 10 scrist-de.mail.protection.outlook.com
Email authentication strong
- SPF
-
v=spf1 include:_spf.hostedemail.com include:_spf.getresponse.com include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1;p=reject;policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 49 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; font-src 'self' https://cdn.jsdelivr.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.datatables.net https://cdn.jsdelivr.net https://code.jquery.com; img-src data: 'self' https://code.jquery.com https://img.youtube.com; style-src 'self' 'unsafe-inline' https://hcaptcha.com https://*.hcaptcha.com https://code.jquery.com https://cdn.jsdelivr.net https://stackpath.bootstrapcdn.com https://cdn.datatables.net; frame-src 'self' https://www.google.com https://hcaptcha.com https://*.hcaptcha.com https://www.youtube-nocookie.com https://maps.google.de; connect-src 'self' https://hcaptcha.com https://*.hcaptcha.com; child-src 'self' https://www.youtube-nocookie.com https://www.google.com; base-uri 'self'; object-src 'self' data:; form-action 'self'; frame-ancestors 'self';- strict-transport-security
max-age=63072000; includeSubDomains; preload
Links to (50)
- 2basketballbundesliga.de×1
- avis.de×1
- bade-bestattungen.de×1
- barmer.de×1
- basketball-bund.de×1
- big-basketball.com×1
- bueroplan-nord.de×1
- bwb-gruppe.eu×1
- bwpapersystems.com×1
- cmr-hamburg.de×1
- duenkel-bau.de×1
- elbe-akustik.de×1
- elbe1.com×1
- emotion-technologies.de×1
- enkl-energie.de×1
- facebook.com×1
- famila-nordost.de×1
- fitnessfabrik.com×1
- foersterhilms.de×1
- freihofwedel.de×1
- garten-wedel.de×1
- hamburg-basket.de×1
- hamburgtowers.de×1
- hls-umzuege.de×1
- hqhh.de×1
- immobilienwunderlich.de×1
- instagram.com×1
- johncordes.de×1
- junited-autoglas.de×1
- kelloggs.de×1
- kuechenwelten-hamburg.com×1
- langbehn-elektrotechnik.de×1
- langerjung.de×1
- luechau.de×1
- malermeister-pein.de×1
- medac.de×1
- muehlensteinwedel.de×1
- noz-mhn.de×1
- oc-wedel.de×1
- pane-vino-wedel.de×1
- peakzone.de×1
- recht-wedel.de×1
- rehaktiv-wedel.de×1
- rehder-wohnungsbau.de×1
- reservix.de×1
- rieck-galabau.de×1
- rln-basketball.de×1
- secumar.com×1
- sparkasse-wedel.de×1
- stadtwerke-wedel.de×1