indexo.dev

skooly.at

.at crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 282 ms crawled 2026-06-04

AT · 195.230.161.21 · AS8339 kabelplus GmbH

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
skooly
Description
skooly - Lernen macht Spaß, digitales Klassenbuch, elektronisches Klassenbuch, Mitteilungsheftapp, Mitteilungsheft-App, Klassenbuchapp; Klassenbuch-App, Kompetenzraster, Pensenbuch, homeschooling, Mitteilungsheft

Technology

Server
Apache
jQuery
3.7.1
Stack
PHP

Social

DNS records live

NS
  • ns.inwx.de
  • ns2.inwx.de
  • ns3.inwx.de
MX
  • 10 mail.skooly.at

Email authentication strong

SPF
v=spf1 a mx ip4:195.230.161.21 -all
strict (-all)
DMARC
v=DMARC1;p=reject;sp=reject;pct=100;rua=mailto:admin@skooly.at;ri=86400;aspf=s;adkim=s;fo=1
policy: reject (enforced) · sp=reject
DKIM
  • default: v=DKIM1; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6duTzUbBscxKBQnCYGjmvaSqttfJTJJpKjJuNYw7SUgWWU6uDs75z+tjM2s8vAqUiVptXK4OEeVcNi4L…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-12-01 to 2027-01-02
Expires in 210 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://skooly.at/login.php

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
script-src 'self' 'nonce-82e15de7798c9ec1750587158aa7f7d98208b44bbbc1feeda81ed1145fa8fa51' 'report-sample'; style-src 'self' 'nonce-82e15de7798c9ec1750587158aa7f7d98208b44bbbc1feeda81ed1145fa8fa51' 'unsafe-inline'; style-src-attr 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self' data:; frame-ancestors 'self'; form-action 'self'; report-uri /header/../header/csp_endpoint.php

Links to (3)

Linked from (1)