indexo.dev

sg-zertifikate.ch

.ch crawl

First seen 2026-05-23 · Last seen 2026-05-30 · ok HTTP/1.1 200 2873 ms crawled 2026-05-29

FR · 194.119.9.35 · AS3295 Societe Generale S.A.

Reputation 100/100

Classifying

DNS records live

NS
  • nycdns01.us.socgen.com
  • nycdns02.us.socgen.com
  • pardns11.sgcib.com
  • pardns12.sgcib.com
  • tokdns11.socgen.co.jp
  • tokdns12.socgen.co.jp
MX
  • 10 mail.iap.socgen.com
  • 10 secmail.iap.socgen.com
TXT
  • _93uyjyapranc547hbfuw5pzcxkikqns

Email authentication strong

SPF
v=spf1 include:_spf-a.iap.socgen.com include:_spf-b.iap.socgen.com -all
strict (-all)
DMARC
v=DMARC1; p=reject;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-11-04 to 2026-11-04
Expires in 156 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://sg-zertifikate.ch/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'none'; img-src 'self' data: *.youtube.com *.ytimg.com; font-src 'self' data:; object-src 'none'; style-src-attr 'unsafe-inline'; base-uri 'self'; form-action 'none'; media-src 'self'; script-src 'self' 'nonce-ceba51df-3e6c-4739-8c58-6b779e1b4ad7' *.sg-zertifikate.ch view.ceros.com 'unsafe-eval'; style-src 'self' 'nonce-ceba51df-3e6c-4739-8c58-6b779e1b4ad7'; frame-src 'self' *.youtube.com view.ceros.com https://tradematch.sgmarkets.com https://sg.novomind.com player.pdcstrcdn.de; frame-ancestors 'self' ; connect-src 'self' *.sg-zertifikate.ch wss://warrantspushserver.societegenerale.com *.societegenerale.com; script-src-attr 'unsafe-inline'
strict-transport-security
max-age=31536000; includeSubDomains

Linked from (2)